[Samba] Error on classicupgrade - Unable to get id for sid

Stéphane PURNELLE stephane.purnelle at corman.be
Fri Aug 30 08:50:10 MDT 2013 

Sorry, correct SID is 

SID - 1-5-21-xxxx-xxxx-xxx-500 SID for Administrator account
SID - 1-5-21-xxxx-xxxx-xxx-512 SID for group Domain Admins

regards

        Stéphane


-----------------------------------
Stéphane PURNELLE                         Admin. Systèmes et Réseaux 
Service Informatique       Corman S.A.           Tel : 00 32 (0)87/342467

samba-bounces at lists.samba.org wrote on 30/08/2013 16:42:15:

> De : Andreas Grabner <andreas at vianova.cc>
> A : 
> Cc : samba at lists.samba.org
> Date : 30/08/2013 16:42
> Objet : Re: [Samba] Error on classicupgrade - Unable to get id for sid
> Envoyé par : samba-bounces at lists.samba.org
> 
> Thanks again!
> but i am confused now.
> must the SID be xxxxxx-512? 
> 
> Andreas
> 
> ----- "Stéphane PURNELLE" <stephane.purnelle at corman.be> schrieb:
> 
> > You must change this in your samba 3.x ldap tree, not in samba4 ldb.
> > SID S-1-5-21-xxxx-500 is correct value for Administrator
> > 
> > 
> > -----------------------------------
> > Stéphane PURNELLE                         Admin. Systèmes et Réseaux 
> > Service Informatique       Corman S.A.           Tel : 00 32
> > (0)87/342467
> > 
> > samba-bounces at lists.samba.org wrote on 30/08/2013 16:32:44:
> > 
> > > De : Andreas Grabner <andreas at vianova.cc>
> > > A : 
> > > Cc : samba at lists.samba.org
> > > Date : 30/08/2013 16:33
> > > Objet : Re: [Samba] Error on classicupgrade - Unable to get id for
> > sid
> > > Envoyé par : samba-bounces at lists.samba.org
> > > 
> > > Hi,
> > > 
> > > Thank you!
> > > my admin has SID xxxx-500. I tried to change but
> > > 
> > > ./bin/ldbmodify -H private/sam.ldb Admin.ldif 
> > > ERR: (Unwilling to perform) "samldb: objectSid must not be 
> > > specified!" on DN CN=Administrator,CN=Users,DC=hla-gs,DC=at at
> > block
> > > before line 6
> > > Modify failed after processing 0 records
> > > 
> > > Now what? Need help again
> > > 
> > > Andreas
> > > 
> > > ----- "Stéphane PURNELLE" <stephane.purnelle at corman.be> schrieb:
> > > 
> > > > Hi,
> > > > 
> > > > Verify if Administrator have SID S-1-5-21-xxxxx-512 and root have
> > uid
> > > > = 0 
> > > > and a SID 
> > > > 
> > > > your ldap tree must not have user with SID S-1-5-32-544 or other
> > group
> > > > 
> > > > like this
> > > > 
> > > > 
> > > > -----------------------------------
> > > > Stéphane PURNELLE                         Admin. Systèmes et
> > Réseaux 
> > > > Service Informatique       Corman S.A.           Tel : 00 32
> > > > (0)87/342467
> > > > 
> > > > samba-bounces at lists.samba.org wrote on 30/08/2013 15:56:40:
> > > > 
> > > > > De : Andreas Grabner <andreas at vianova.cc>
> > > > > A : samba at lists.samba.org, 
> > > > > Date : 30/08/2013 15:57
> > > > > Objet : [Samba] Error on classicupgrade - Unable to get id for
> > sid
> > > > > Envoyé par : samba-bounces at lists.samba.org
> > > > > 
> > > > > Hi,
> > > > > 
> > > > > i have a problem  upgrading an old samba 3.5.x to 4.0.9. The
> > > > upgradeends 
> > > > with:
> > > > > 
> > > > > Setting password for administrator
> > > > > Administrator password has been set to password of user 'root'
> > > > > set_nt_acl_no_snum: fset_nt_acl returned
> > NT_STATUS_INVALID_OWNER.
> > > > > ERROR(runtime): uncaught exception - (-1073741734, 
> > > > 'NT_STATUS_INVALID_OWNER')
> > > > >   File
> > "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/
> > > > > __init__.py", line 175, in _run
> > > > >     return self.run(*args, **kwargs)
> > > > >   File
> > "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/
> > > > > domain.py", line 1318, in run
> > > > >     useeadb=eadb, dns_backend=dns_backend, use_ntvfs=use_ntvfs)
> > > > >   File "/usr/local/samba/lib/python2.7/site-packages/samba/
> > > > > upgrade.py", line 935, in upgrade_from_samba3
> > > > >     result.names.domaindn, result.lp, use_ntvfs)
> > > > >   File "/usr/local/samba/lib/python2.7/site-packages/samba/
> > > > > provision/__init__.py", line 1562, in setsysvolacl
> > > > >     setntacl(lp,sysvol, SYSVOL_ACL, str(domainsid), 
> > > > > use_ntvfs=use_ntvfs, skip_invalid_chown=True, passdb=s4_passdb)
> > > > >   File "/usr/local/samba/lib/python2.7/site-packages/samba/
> > > > > ntacls.py", line 154, in setntacl
> > > > >     smbd.set_nt_acl(file, security.SECINFO_OWNER | 
> > > > > security.SECINFO_GROUP | security.SECINFO_DACL |
> > > > security.SECINFO_SACL, 
> > > > sd)
> > > > > 
> > > > > Seems to be a problem with SID S-1-5-32-544 right?
> > > > > 
> > > > > router1:/usr/local/samba# ./bin/samba-tool ntacl sysvolreset
> > > > > X:  S-1-5-21-1291026335-3787069601-4058188190-500
> > > > > X:  S-1-5-32-544
> > > > > ERROR(<class 'passdb.error'>): uncaught exception - Unable to
> > get id
> > > > for 
> > > > sid
> > > > >   File
> > "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/
> > > > > __init__.py", line 175, in _run
> > > > >     return self.run(*args, **kwargs)
> > > > >   File
> > "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/
> > > > > ntacl.py", line 207, in run
> > > > >     (BA_gid,BA_type) = s4_passdb.sid_to_id(BA_sid)
> > > > > 
> > > > > 
> > > > > At the moment i have no idea how to fix it. I already checked
> > for 
> > > > > duplicate SIDs, names, wrong flags, domains.
> > > > > I would need some help please
> > > > > 
> > > > > best regards
> > > > > Andreas 
> > > > > 
> > > > > 
> > > > > -- 
> > > > > Andreas Grabner
> > > > > +43 676 840 775 101
> > > > > andreas at vianova.cc
> > > > > 
> > > > > vianova mediendesign gmbh
> > > > > Augasse 24 
> > > > > A- 7400 oberwart
> > > > > +4333 52 / 32 860
> > > > > www.vianova.cc
> > > > > -- 
> > > > > To unsubscribe from this list go to the following URL and read
> > the
> > > > > instructions:  https://lists.samba.org/mailman/options/samba
> > > > -- 
> > > > To unsubscribe from this list go to the following URL and read
> > the
> > > > instructions:  https://lists.samba.org/mailman/options/samba
> > > 
> > > -- 
> > > Andreas Grabner
> > > +43 676 840 775 101
> > > andreas at vianova.cc
> > > 
> > > vianova mediendesign gmbh
> > > Augasse 24 
> > > A- 7400 oberwart
> > > +4333 52 / 32 860
> > > www.vianova.cc
> > > -- 
> > > To unsubscribe from this list go to the following URL and read the
> > > instructions:  https://lists.samba.org/mailman/options/samba
> > -- 
> > To unsubscribe from this list go to the following URL and read the
> > instructions:  https://lists.samba.org/mailman/options/samba
> 
> -- 
> Andreas Grabner
> +43 676 840 775 101
> andreas at vianova.cc
> 
> vianova mediendesign gmbh
> Augasse 24 
> A- 7400 oberwart
> +4333 52 / 32 860
> www.vianova.cc
> -- 
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba

More information about the samba mailing list