[Samba] Administrator lost write privileges to sysvol (Can't add/edit anything using RSAT Tools)

Rowland penny rpenny at samba.org
Thu Jan 23 15:05:16 UTC 2020

On 23/01/2020 14:36, Darren Conte via samba wrote:
> Perplexed how Administrator lost the ability to write.
You and me both :-(

Try this:

ldbsearch -H /var/lib/samba/private/idmap.ldb 
"(&(objectClass=sidMap)(cn=$(net getdomainsid | awk '{print $NF}')-500))"

It should return something like this:

dn: CN=S-1-5-21-1768301897-3342589593-1064908849-500
cn: S-1-5-21-1768301897-3342589593-1064908849-500
objectClass: sidMap
objectSid: S-1-5-21-1768301897-3342589593-1064908849-500
xidNumber: 0
distinguishedName: CN=S-1-5-21-1768301897-3342589593-1064908849-500

The important one is 'xidNumber', it should be '0'

Does Administrator have a 'uidNumber' attribute ?


More information about the samba mailing list