[Samba] Failed to find domain Unix Group
Rowland penny
rpenny at samba.org
Tue Jul 12 20:58:53 UTC 2016
On 12/07/16 21:46, Carlos A. P. Cunha wrote:
>
> Note: This working because I had to change all the permissions and the
> files were left with various "waste" of old permissions.
>
>
> Thanks
>
>
> Em 12-07-2016 17:44, Carlos A. P. Cunha escreveu:
>>
>> Hello!
>> Sorry for the confusion this where SERVER is SERVERAD(right)
>> At the time this all to work, but still followed the message! Errors
>> in logs.
>> And I'm afraid to change again.
>>
>> : - |
>>
>>
>> Em 12-07-2016 17:40, Rowland penny escreveu:
>>> OK, you posted your smb.conf from your fileserver, it contained
>>> these lines:
>>>
>>> workgroup = SERVER
>>>
>>> and
>>>
>>> idmap config SERVERAD: backend = rid
>>> # I changed values for test
>>> idmap config SERVERAD: range = 1000000000 to 9999999999
>>>
>>> I understand you changed the workgroup to post your smb.conf, but
>>> are the actual names for 'SERVER' and 'SERVERAD' the same in your
>>> smb.conf, because they should be.
>>>
>>> This doesn't explain why you are getting private groups, could you
>>> check your AD to see if the groups exist.
>>
>
I don't understand how your users/groups changed their IDs, on the DC
RIDs are mapped and stored in idmap.ldb, you are also using the winbind
'rid' backend and again, the user/group IDs are mapped from the RID by
the algorithm:
ID = RID - BASE_RID + LOW_RANGE_ID
The BASE_RID is '0' so this becomes:
ID = RID + LOW_RANGE_ID
So unless you changed the range in smb.conf, your user/group IDs
shouldn't change.
I still don't understand where your private groups are coming from,
unless, are you running sssd or nlscd as well as winbindd ??
Rowland
More information about the samba
mailing list