[Samba] problem with mechanism of samba user SID creation
Rowland Penny
rowlandpenny at googlemail.com
Mon Sep 8 03:54:45 MDT 2014
On 08/09/14 10:35, Karel Lang AFD wrote:
>
> Hi Rowland,
> thank you so much, i stand corrected, i really mistaken one for the
> other. Great mystery solved :]].
>
> If i might just one more question (purely out of wonderment).
>
> If i take the 'passdb.tdb' file from Samba PDC production server and
> place it onto the test server (which is basically copy of production
> server - but has different Domain SID), the USER SID immediately
> changes from Domain SID of production server --> to Domain SID of test
> server.
> I thought the information in 'passdb.tdb' is 'done deal' and can be
> changed only via 'pdbedit' etc.
> But this looks like that the part of User SID (which is taken from
> Domain SID) is just variable? Probably yes?
>
> Anyway, thank you so much again!!
> Karel
>
>
>
>
>
>> Hi, I think your problem is that you are mistaking the local SID for the
>> domain sid, there is another command 'net get domainsid'.
>>
>> If I run this on my laptop that is joined to the domain, I get this:
>>
>> rowland at ThinkPad ~ $ sudo net getdomainsid
>> SID for local machine THINKPAD is:
>> S-1-5-21-1417260334-839400796-1629432758
>> SID for domain EXAMPLE is: S-1-5-21-2025076216-3455336656-3842161122
>>
>> Yes, the local SID is different from the domain SID, but the local SID
>> is not used.
>>
>> So, having got that out of the way, can we have a bit more info please,
>> smb.conf, what sort of domain and what is the domain controller.
>>
>> Rowland
>>
>
Hi, it has been sometime since I dealt with a PDC, but I seem to
remember that passdb.tdb just stored the users info and hashed password
etc, but it doesn't hold the users SID.
Rowland
More information about the samba
mailing list