[Samba] uidNumber. ( Was: What is --rfc2307-from-nss ??)
Greg Zartman
gzartman at koozali.org
Tue Dec 2 13:32:12 MST 2014
On Tue, Dec 2, 2014 at 11:47 AM, Rowland Penny <rowlandpenny at googlemail.com>
wrote:
> If you examine idmap.ldb with ldbedit, you will see it contains records
> for builtin users/groups AND domain users/groups. On the samba 4 AD DC, if
> you do not use RFC2307 attributes, the domain users/groups xidNumber's are
> used via winbind, but if you do use the RFC2307 attributes for domain
> users/groups, then the xidNumbers are ignored. The builtin users/groups
> always use the xidNumbers, you do not need to concern yourself these.
>
Yep, I did see the mapping. In fact, I created some Perl code to wrap
around ldbmodify and set xidNumber = uidNumber/guiNumber in Samba. Sounds
like the xidNumbers are really a non-issue with the RFC2307 attributes and
SSSD.
Thanks,
Greg
More information about the samba
mailing list