[Samba] posixAccount objectClass

Thomas Simmons twsnnva at gmail.com
Sat Feb 23 10:05:10 MST 2013


On Sat, Feb 23, 2013 at 11:38 AM, Andreas Gaiser/L <info at multifake.net>wrote:

> Hi fellow list users,
>
>
> I'm setting up a 4.0.3 DC and I am observing the following issue:
>
> - nsswitch.conf contains winbind for passwd and group
> - provisioned with use_rfc2307
> - creating user with ADUC
> - creating group
> - adding Unix Attributes to user and group
> - 1st part of issue: ADUC throws error message (translated from German
> XP: "The object properties of the object could not be changed. [4 more
> line of misleading information about possible networking issues]")
> - but nevertheless it adds a Unix userID which is displayed when opening
> the object properties/Unix Attributes tab again
> - 2nd part of issue: winbind on the DC itself does not respect the
> uidNumber attribute, though it's visible with an LDAP client (Apache
> DS), checked with wbinfo -i and with getent passwd
> - taking a closer look at the object, I find the objectClass
> (posixAccount) missing
> - adding posixAccount as objectClass (I have to click through a warning
> and reject creating an ntSecurityDescriptor attribute) winbind suddenly
> used the uidNumber Attribute
>
> Is there something I miss or is this to be considered a bug?
>
> If this is the problem I am thinking of, I originally noticed it in 4.0.0.
I believe Andrew provided a patch, however I don't need this in my
production environment and only stumbled onto the issue while testing
something else, so I don't know if what I'm referring to was fixed in later
releases. I'll see if I can find the thread and bug shortly.

>
> Regards,
>
> Andreas
> --
> Andreas Gaiser, Berlin, Germany
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>


More information about the samba mailing list