[Samba] Domain member server: user access

L.P.H. van Belle belle at bazuin.nl
Mon Sep 25 14:57:53 UTC 2017

Looks to me thats what the AD DC does, i think a automapping of Domain users to users. 

I can remember if i normaly see "domain User" 

Now, looking good at my config i say its a bug, explained below why. 

If i look at my "winadmin" user.  ( on DC ) 
id admin
uid=10000(NTDOM\admin) gid=100(users) groups=100(users),3000004(NTDOM\group policy creator owners),10001(NTDOM\domain admins),3000005(NTDOM\denied rodc password replication group),3000009(BUILTIN\users),3000000(BUILTIN\administrators)

The member:
uid=10000(admin) gid=10000(domain users) groups=10000(domain users),10001(domain admins),2001(BUILTIN\users),2000(BUILTIN\administrators)
This one is the only correct one. 

BUILTIN\users should be mapped to users imo, but lets the devs tell us. 




> -----Oorspronkelijk bericht-----
> Van: samba [mailto:samba-bounces at lists.samba.org] Namens 
> Rowland Penny via samba
> Verzonden: maandag 25 september 2017 16:50
> Aan: samba at lists.samba.org
> Onderwerp: Re: [Samba] Domain member server: user access
> On Mon, 25 Sep 2017 16:35:52 +0200
> "L.P.H. van Belle via samba" <samba at lists.samba.org> wrote:
> > 100 is debian default for users
> > And as far i remember stefhan uses debian. 
> > 
> Yes, I know that, but I also know that it is usually only 
> used on a DC, is an xidNumber and wont work on a Unix domain 
> member, unless, for some unknown reason, Domain Users id 
> given the gidNumber '100'
> Rowland 
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba

More information about the samba mailing list