[Samba] Problems with Samba after upgrading to v4 and changing LDAP-backend from OpenLDAP to 389

Rowland Penny rpenny at samba.org
Wed Sep 21 19:40:57 UTC 2022

On 21/09/2022 20:32, Alexander Harm || ApfelQ via samba wrote:
> Thank you all for your input, very much appreciated. Would there be a way to migrate the idmap from LDAP from the old OpenLDAP to e. g. IDMAP_RID?

No, idmap_rid calculates the Unix ID from the user or group RID, and the 
RID is unlikely to be the same as the the user or group UNIX ID now. You 
could use the idmap_ad and set the current Unix ID as the users 
uidNumber attribute and the groups gidNumber attribute.

There is a way of updating an NT4-style domain to a Samba AD domain, you 
do this with 'samba-tool domain classicupgrade'


More information about the samba mailing list