[Samba] Id maaping
Rowland Penny
rpenny at samba.org
Wed May 21 04:45:30 UTC 2025
On Wed, 21 May 2025 09:32:31 +1200
"Samba @ Pegasusnz via samba" <samba at lists.samba.org> wrote:
> Hi
>
> After upgrading to 4.22
> The id mapping for AD doesn’t seem to work
>
> This is my smb.conf for id mapping
What about the rest of the smb.conf ?
Posting just a part of the smb.conf is never a good idea.
>
> workgroup = BALEWAN
> idmap config * : backend = tdb
> idmap config * : range = 3000-9999
> idmap config BALEWAN : backend = ad
> #idmap config BALEWAN:schema_mode = rfc2307
> idmap config BALEWAN : range = 10000-99999
> idmap config BALEWAN : unix_nss_info = yes
> idmap config BALEWAN : unix_primary_group = yes
>
> This has worked for years. If I comment out the BALEWAN lines and
> restart it works but the mapping is wrong
>
> I have 3 DCs one is offline, power saving.
Never have a Samba AD DC offline, it needs to be online for
replication, if you intend to turn a DC off for any length of time, you
should demote it.
> One is on a bitcoin miner running 4.15.13-Ubuntu
That is a bit old and EOL from the Samba point of view.
>and the main DC is 4.22.1-Debian-4.22.1+dfsg-1
What 'main' DC ?
All DCs are equal.
What is the computer with the 'idmap config' lines ?
If you had posted the entire smb.conf , I wouldn't have to ask this.
Rowland
More information about the samba
mailing list