Hello everyone. As far I know, all Microsoft domain are identified with a SID. It is used for authorization, for example in the file ACLs of the users' files. Before using it, this SID is generated at random. This SID resides in the PDC, When Samba is acting as PDC, where lives this SID? (I suppose that in a file). I'm asking this because I'm thinking in a backup procedure for my Samba server and I would like to backup the SID. If I wouldn't do so, the just installed Samba will generate a different SID at random, so there would be problems with the files with the old SID in the ACLs. Any help is welcome. Thanks in advance. ------------ Ferm?n
Andrew Bartlett
2003-Jul-27 10:04 UTC
[Samba] where Samba stores the SID when acting as PDC?
On Fri, 2003-07-25 at 20:00, Ferm?n Gal?n wrote:> Hello everyone. > > As far I know, all Microsoft domain are identified with > a SID. It is used for authorization, for example in the file > ACLs of the users' files. Before using it, this SID is generated > at random. This SID resides in the PDC, > > When Samba is acting as PDC, where lives this SID? > (I suppose that in a file).secrets.tdb> I'm asking this because I'm thinking in a backup > procedure for my Samba server and I would like > to backup the SID. If I wouldn't do so, the just > installed Samba will generate a different SID at > random, so there would be problems with the files > with the old SID in the ACLs.There are now commands (particularly in 3.0's net utility) to get and set that sid, independent of the rest of the secrets.tdb file. Andrew Bartlett -- Andrew Bartlett abartlet@pcug.org.au Manager, Authentication Subsystems, Samba Team abartlet@samba.org Student Network Administrator, Hawker College abartlet@hawkerc.net http://samba.org http://build.samba.org http://hawkerc.net -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://lists.samba.org/archive/samba/attachments/20030727/d76a6191/attachment.bin
Possibly Parallel Threads
- [Bridge] Re: Bridge Digest, Vol 31, Issue 6
- "Account Unknown" problem (Samba3 domain users in WinNT permissions)
- Problem creating domU: "Device 2049 (vbd) could not be connected. Hotplug scripts not working."
- Multiple SA in the same IPSec tunnel
- Linux router performance