[Samba] SOLVED: BUILTIN\Administrators - failed to call wbcSidToUid: WBC_ERR_DOMAIN_NOT_FOUND
rpenny at samba.org
Thu Sep 7 13:36:35 UTC 2017
On Thu, 07 Sep 2017 15:04:43 +0200
Jiří Černý via samba <samba at lists.samba.org> wrote:
> > You may get away with using the 'rid' backend, but this will have to
> be> your choice, but whatever you choose, I am sure we can help you
> be> get
> to> a working domain.>
> > RowlandSo I have an example. We have file and print server based on
> CentOS 7 with Samba 4.4.4. As wiki said
> we have to set permissions on [print$] share:
> # chgrp -R "SAMDOM\Domain Admins" /srv/samba/printer_drivers/
> # chmod -R 2755 /srv/samba/printer_drivers/But I can't do that,
> beacause I removed GID of Domain Admins, so winbind can't enumerate
> this group.
> So how to do that?Do I have to change idmap backend to from AD to RID?
OK, my suggestion is to create an AD group, (again this is just a
suggestion, 'Unix Admins'), give this group a gidNumber and make it a
member of 'Domain Admins'. Now use this new group instead of 'Domain
Admins' on Unix.
More information about the samba