[Samba] rid overlaps nobody uid

Rowland Penny rpenny at samba.org
Wed Dec 20 19:33:01 UTC 2017

On Wed, 20 Dec 2017 19:49:28 +0100
Chris via samba <samba at lists.samba.org> wrote:

> All,
> in many manuals winbind rid backend idmap overlaps with linux nobody.
> The wiki for example says
> idmap config SAMDOM : range = 10000-999999
> but debian nobody for example is 65534.
> I guess this doesn't matter, or should one use a smaller range?
> - Chris

I wouldn't worry about it, NSS uses /etc/passwd & /etc/group first, so
the local 'nobody' will be found first, just don't use '65534' as an
AD uidNumber (or gidNumber)

If it really does worry you, just change '65534' to what red-hat uses
'99', there must have been a reason why debian used '65534', but I
have never found it.


More information about the samba mailing list