[Samba] [Curiosity] Default domain, DC and DM...
Rowland Penny
rpenny at samba.org
Fri Nov 10 16:50:11 UTC 2017
On Fri, 10 Nov 2017 17:32:37 +0100
Marco Gaiarin via samba <samba at lists.samba.org> wrote:
>
> In my DC, without setting explicitly a 'winbind default domain', i can
> check logins domainless:
>
> root at vdcsv1:~# id gaio
> uid=10000(LNFFVG\gaio) gid=10513(LNFFVG\domain users)
> gruppi=10513(LNFFVG\domain
> users),11001(LNFFVG\sir),10999(LNFFVG\unixadm),3000008(LNFFVG\domain
> admins),3000005(LNFFVG\denied rodc password replication
> group),3000005(LNFFVG\denied rodc password replication
> group),3000009(BUILTIN\users),3000000(BUILTIN\administrators)
>
> in my DM, no, i've to explicitly set the domain:
>
> root at vdmsv1:~# id gaio
> id: gaio: no such user
> root at vdmsv1:~# id LNFFVG\\gaio
> uid=10000(gaio) gid=10513(domain users) gruppi=10513(domain
> users),11001(sir),10999(unixadm),5001(BUILTIN\users),5000(BUILTIN\administrators)
>
>
> but if i set 'winbind use default domain = yes':
>
> root at vdmsv1:~# id gaio
> uid=10000(gaio) gid=10513(domain users) gruppi=10513(domain
> users),11001(sir),10999(unixadm),5001(BUILTIN\users),5000(BUILTIN\administrators)
>
>
> Why?!
>
Because the code on a DC is different from the code on a Unix domain
member ;-)
Rowland
More information about the samba
mailing list