[Samba] ID Mapping
Rowland penny
rpenny at samba.org
Wed Nov 4 09:49:19 UTC 2020
On 04/11/2020 00:14, O'Connor, Daniel wrote:
> Hmm, you say 'uidNumber' but I have xidNumber:
> # editing 1 records
> # record 1
> dn: CN=S-1-5-21-1638907138-195301586-368347949-3088
> cn: S-1-5-21-1638907138-195301586-368347949-3088
> objectClass: sidMap
> objectSid: S-1-5-21-1638907138-195301586-368347949-3088
> type: ID_TYPE_BOTH
> xidNumber: 1044
> distinguishedName: CN=S-1-5-21-1638907138-195301586-368347949-3088
You are looking in the wrong database 😁
'xidNumber' attributes are only used on an AD DC and found in
idmap.ldb, you should be looking in sam.ldb
If you want your users to have the same ID everywhere, you must add a
unique uidNumber attribute to each user that you want to be visible on
Unix, you must also give the Domain Users group a gidNumber attribute.
These will override the 'xidNumber' attributes on the DC and you must
use the winbind 'ad' backend on Unix domain members.
Rowland
More information about the samba
mailing list