[Samba] classicupgrade
Rowland Penny
rpenny at samba.org
Fri Oct 26 16:03:27 UTC 2018
On Fri, 26 Oct 2018 17:38:55 +0200
Corrado Ravinetto via samba <samba at lists.samba.org> wrote:
>
>
> Il 26/10/2018 17:18, Rowland Penny via samba ha scritto:
> > gidNumber: 513
> [root at dc1 ~]# ldbsearch -Hldap://$(hostname -s) -k yes -P
> '(&(samaccountname=Domain Users)(gidNumber=*))' gidNumber | grep
> gidNumber | awk '{print $NF}'
> 513
>
> gid number is ok
> but on member with testparm
> idmap config lxcerruti : unix_nss_info = yes
> idmap config lxcerruti : schema_mode = rfc2307
> idmap config lxcerruti : range = 500-7999
> idmap config lxcerruti : backend = ad
> idmap config * : range = 9000-17999
> idmap config * : backend = tdb
>
> after net cache flush i see :
>
> drwxrwx-wx. 4 root 513 83 30 apr 2015 Titoli
> drwxrwxrwx. 175 root 502 8192 25 ott 12.21 usr
>
>
> :-(
> i'm a little bit frustrating
>
>
I take it that this is the result of something like 'ls
-la /path/to/somewhere'
This is a step forward, what does 'getent passwd ausername' show ?
On a Unix domain member, with the 'idmap config' lines above, the
primary group of all users will be Domain Users (513)
What does 'getent group Domain\ Users' show ?
What worries me is the group with the ID 502, which group is it ?
I ask this because '502' is the RID for krbtgt.
Rowland
More information about the samba
mailing list