[Samba] Mapping UIDs on Linux to same UID as AD-bound Mac is mapping to
Brett Randall
brett.randall at gmail.com
Tue Feb 16 09:32:52 UTC 2016
Hi all
I have a Linux machine bound to AD, and a Mac bound to AD. Both have me log
in with different UIDs for the same AD user. This makes sense, as AD doesn't
have a UNIX-compliant uid/gid attribute.
One thing I have found that interests me is this:
https://books.google.com.au/books?id=yNILCwAAQBAJ
<https://books.google.com.au/books?id=yNILCwAAQBAJ&pg=PA111&lpg=PA111&dq=mac
+%22active+directory%22+%22directory+utility%22+mappings+uid&source=bl&ots=s
0fMZSMr8r&sig=uuyWWE-jzlimQ9U49sZ3KRDAXvI&hl=en&sa=X&ved=0ahUKEwi_q9uL-PvKAh
XBkpQKHWvDBFkQ6AEIWjAH#v=onepage&q=mac%20%22active%20directory%22%20%22direc
tory%20utility%22%20mappings%20uid&f=false>
&pg=PA111&lpg=PA111&dq=mac+%22active+directory%22+%22directory+utility%22+ma
ppings+uid&source=bl&ots=s0fMZSMr8r&sig=uuyWWE-jzlimQ9U49sZ3KRDAXvI&hl=en&sa
=X&ved=0ahUKEwi_q9uL-PvKAhXBkpQKHWvDBFkQ6AEIWjAH#v=onepage&q=mac%20%22active
%20directory%22%20%22directory%20utility%22%20mappings%20uid&f=false
Specifically:
"...it is important that every system bound to Active Directory resolves the
same unique ID for any respective user. To accomplish this, Apple uses the
first 32 bytes of the user's GUID to generate a numerical value used as a
statically mapped value for the OS X unique ID."
So, since the Linux Samba is the one using sequential UIDs where it
generates a new UID each time a new user is identified, and the Mac is using
somewhat AD-generated UIDs, my preference is to somehow make Linux Samba
work the same way that Apple generates UIDs.
Has anyone done this? Surely it's a simple formula to generate the same UID
on Linux, but how would one make Samba use this? I've looked at the idmap
attributes in smb.conf(5) and can't figure out where to start.
Thanks in advance
Brett
More information about the samba
mailing list