[Samba] Unable to get primary group information when using AD authentication with samba-4.10.4
Rowland penny
rpenny at samba.org
Mon Mar 2 08:59:43 UTC 2020
On 02/03/2020 00:45, Goto, Ryoichi wrote:
> [root @ ms2 ~] # wbinfo -i oec_faculty02
> oec_faculty02: *: 11110: 10513 :: / home / Domain Users / oec_faculty02: / bin / bash
> [root @ ms2 ~] # id oec_faculty02
> uid = 11110 (oec_faculty02) gid = 10513 (domain users) groups = 10513 (domain users), 11110 (oec_faculty02), 11105 (faculty),
> 1000001 (BUILTIN \ users)
If it doesn't work on a Unix domain member using the 'ad' backend, but
does with the 'rid' backend, then this probably means that you do not
have the required uidNumber & gidNumber attributes in AD. They are not
added automatically and xidNumber attributes found on a DC are not the
same as uidNumber & gidNumber attributes.
Rowland
More information about the samba
mailing list