[Samba] Samba as AD member & without winbind...

Ralph Boehme slow at samba.org
Fri Oct 30 14:07:30 UTC 2020

Am 10/30/20 um 2:51 PM schrieb Rowland penny via samba:
> On 30/10/2020 13:44, L.P.H. van Belle wrote:
>> Maybe add,
>> Make sure you dont overlap the local user ID.
>> The first create user on linux is often 1000
>> The example starts with 1000..
> That is the whole point behind idmap_nss, it reads a user from AD, then
> finds a user with the same name in /etc/passwd and maps the two together
> (I think).

for id2sid it

- calls getpwuid() or getgrgid() to get the name

- it then calls winbind_lookup_name() to translate the name to a SID

The latter will query a DC.

For sid2id it's the other way around.


Ralph Boehme, Samba Team                https://samba.org/
Samba Developer, SerNet GmbH   https://sernet.de/en/samba/
GPG-Fingerprint   FAE2C6088A24252051C559E4AA1E9B7126399E46

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.samba.org/pipermail/samba/attachments/20201030/31704ccb/signature.sig>

More information about the samba mailing list