s3 - s4 conversion
Lukasz Zalewski
lukas at eecs.qmul.ac.uk
Tue Apr 12 15:16:52 MDT 2011
Hi Aaron,
> assert rid >= 1000, "sid[%s] rid < 1000" % (sid)
> AssertionError: sid[S-1-5-21-496710657-683828429-1874078741-500] rid < 1000
You are trying to import a well known domain sid (Administrator) - AFAIK
these will be created by the provision of your samba4 server and should
not be imported.
The reason you getting the same error for groups import, is that the
group member accounts will be checked for their existence, so users are
imported before the groups (a broken user account will fail the group
import).
> # fix SID[S-1-5-21-496710657-683828429-1874078741-500 =>
> S-1-5-21-496710657-683828429-1874078741-140000] for
> DN[CN=ADMINISTRATOR,OU=Imported Computers,DC=convert,DC=com]
>
> Traceback (most recent call last):
> File "./myldap-pub.v2.py", line 1934, in <module>
> ldap_cmd.run()
> File "./myldap-pub.v2.py", line 1927, in run
> user_principal_name=options.user_principal_name)
> File "./myldap-pub.v2.py", line 449, in __init__
> computer_replace_attrs=computer_replace_attrs)
> File "./myldap-pub.v2.py", line 1694, in convertObjects
> replace_attrs=computer_replace_attrs)
> File "./myldap-pub.v2.py", line 1411, in convert_sambaSamAccount
> self.insert_sAMAccountName(sAMAccountName, dn)
> File "./myldap-pub.v2.py", line 1044, in insert_sAMAccountName
> % (name, self.new_sAMAccountNames[name_lower])
> AssertionError: sAMAccountName[NCMAREA$] already exists as
> CN=NCMAREA,OU=Imported Computers,DC=convert,DC=com
Do you by any chance have user account NCMAREA?
Regards
Luk
More information about the samba-technical
mailing list