[Samba] Samba + sssd deployment: success and failure
Jonathon Reinhart
jonathon.reinhart at gmail.com
Sun Jun 16 03:24:53 UTC 2019
A SID is a "security identifier" - it identifies anything that can have
access control entries applied to it.
A domain has a SID, as does a user or a group. The term "SID", by itself,
doesn't indicate to which type of entity one is referring.
https://docs.microsoft.com/en-us/windows/desktop/secauthz/security-identifiers
The RID ("relative identifier") is the last **part of** a SID, to further
delineate an entity (e.g. a user within a domain).
https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-adts/b645c125-a7da-4097-84a1-2fa7cea07714#gt_df3d0b61-56cd-4dac-9402-982f1fedc41c
On Sat, Jun 15, 2019, 07:34 Simo Sorce via samba <samba at lists.samba.org>
wrote:
> On Thu, 2019-06-13 at 17:10 +0100, Rowland penny via samba wrote:
> > I do not really care what Microsoft calls them, to me a SID identifies a
> > domain, a RID identifies an object in a domain and a SID-RID is a
> > combination of the two and identifies an object in a particular domain.
> >
> > If you want to call a SID-RID a SID, be my guest, I will not stop you ;-)
>
> Rowland,
> it helps our users if you use the correct terms.
>
> The correct term is *SID*, please do not make up terms, it is confusing
> and doesn't help.
>
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/options/samba
>
More information about the samba
mailing list