[Samba] winbind: How to map Administrator to "root" on AD member server
steve
steve at steve-ss.com
Sat Feb 15 01:41:23 MST 2014
On Sat, 2014-02-15 at 00:53 +0100, Fred F wrote:
> Hi,
>
> I am running a pure Samba 4.1+ AD environment (on the server side). There
> is one AD DC running Samba 4.1 and two member servers (running Samba 4.1 as
> well).
>
> I have provisioned the domain with support for the rfc2307 AD schema. On
> the DC the UIDs are assigned automatically to AD users by Samba, which is
> great. I am also storing the assigned UIDs in the Active Directory as
> uidNumber (gidNumber for groups).
>
> On the member servers I am using the AD idmap backend with rfc2307 support:
>
> > idmap config *:backend = tdb
> > idmap config *:range = 3500000 - 3600000
> > idmap config MYDOMAIN:backend = ad
> > idmap config MYDOMAIN:schema_mode = rfc2307
> > idmap config MYDOMAIN:range = 0 - 3500000
> > winbind nss info = rfc2307
The ranges overlap.
Try 0-3499999 for MYDOMAIN
Steve
More information about the samba
mailing list