[Samba] NT_STATUS_INVALID_SID
Ryan Ashley
ryana at reachtechfp.com
Thu Oct 27 19:06:08 UTC 2016
My apologies, Rowland. I thought you wanted the SIDs. I provisioned the
domain as follows.
samba-tool domain provision --use-rfc2307 --realm=MEDARTS.LAN
--dns-backend=BIND9_DLZ --domain=MEDARTS --server-role=dc --interactive
I also answered a few questions during interactive provisioning such as
password, but the defaults were good.
Lead IT/IS Specialist
Reach Technology FP, Inc
On 10/27/2016 09:26 AM, Rowland Penny via samba wrote:
> On Thu, 27 Oct 2016 09:20:34 -0400
> Ryan Ashley via samba <samba at lists.samba.org> wrote:
>
>> Rowland, I am on my mobile phone right now so please forgive the data
>> not being available. When I get back to her location today I will be
>> happy to get you that information. How should I get it for you? Both
>> getent and wbinfo work on the server, if that matters.
>>
>>> Lets get the SIDs (actually RIDs) not being what you have set them
>>> to be, out of the way. They will not be set that way on a DC, the
>>> idmap lines you have added are ignored on a DC and they are only
>>> meant to be used on a domain member. If you want to use different
>>> IDs on a DC, you will have to add uidNumber attributes to the users
>>> and a gidNumber to the Domain Users group.
>>>
>>> You say you 'created this as a standalone AD DC' , what do you mean
>>> by this? did you provision with '--server-role=standalone' ?
>>>
>>> Rowland
>>
>>
>>
>>
>
> I will try again (as I didn't ask for any ID numbers)
>
> How did you provision the 'standalone AD DC' ????
>
> Rowland
>
More information about the samba
mailing list