samba - Oct 2006 - Samba PDC...need help granting domain admin access

I have the latest version of Samba on Fedora Core 4. I need help adding 
users to the admin group so windows is not so crippled :-\
I have used the net groupmap add command to map them to unix group of 
admin....which is mapped to "Domain Admins" for windows. The users are
members of the unix admin group but they have no admin access when 
logging into the domain.

I also tried editing the smb.conf. I added
admin users = @admin     Still didn't work after re-logging on.

Any help here with this?

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 10/03/2006 06:37 PM, Scott Mecham escreveu:
> I have the latest version of Samba on Fedora Core 4. I need help adding
> users to the admin group so windows is not so crippled :-\
> I have used the net groupmap add command to map them to unix group of
> admin....which is mapped to "Domain Admins" for windows. The
users are
> members of the unix admin group but they have no admin access when
> logging into the domain.
	Please, could you send the result of 'net groupmap list'?

> I also tried editing the smb.conf. I added
> admin users = @admin     Still didn't work after re-logging on.
	And could you send your smb.conf with some log?

> Any help here with this?
	Let's try, but we need some more information.

	Kind regards,

- --
Felipe Augusto van de Wiel <felipe@paranacidade.org.br>
Coordenadoria de Tecnologia da Informa??o (CTI) - SEDU/PARANACIDADE
http://www.paranacidade.org.br/           Phone: (+55 41 3350 3300)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Debian - http://enigmail.mozdev.org

iD8DBQFFI69WCj65ZxU4gPQRAgXXAJ9Wdj2cA7sS+jYGAA+6AQhE5NIpAwCfY+Cv
yNKHdSX4xZ5OCBwrY0Lsjus=xZHB
-----END PGP SIGNATURE-----

On Wednesday 04 October 2006 1:20 pm, you wrote:
>       Cannot change password - "Permission denied" error
>
>
>       smbd/chgpasswd.c:findpty(73): findpty: Unable to create
>       master/slave pty pair
>
> Make sure that /dev/pts is mounted properly. This will vary depending on
> your server distribution
Hi Scott,

Thanks for the tip.  Apparently in Mandriva /dev/pts is mounted by udev on the 
fly.  Mandriva 2006 notes the following:
for udev-068-34mdk.i586
- remaining bug is lack of /dev/ptmx support in PAM
So apparently /dev/pty never gets created when /usr/bin/passwd gets called 
from samba.

Setting unix password sync = no enables windows users to change their password 
from windoze.  This is what we're going with now, as windoze users never log
onto Linux boxen.

Steve
>
> Steve Glasser wrote:
> > On Wed, 2006-10-04 at 11:59 -0600, Scott Mecham wrote:
> >> Actually, we have that set back to sync. It does work fine.
> >
> > Hey Scott,
> >
> > Thanks for writing back.
> >
> > What the bleep are we doing wrong?  We keep getting the message:
"You do
> > not have permission to change your password"
> >
> > I thought that was an issue created by winXP sp1, which was fixed long
> > ago.  WTF?
> >
> > Steve
-- 
Steve Glasser
Network Administrator
Flying Pig Computer Svc.
steve@fpig.net