samba - Jun 2003 - Cannot add Domain Groups to Local Groups (D Users OK)

I have searched the globe but alas I can't come up with a solution.
I am running Debian 3.0r0 with samba 2.2.3a12-3 (or something around
there)
and Kernel 2.4.18.
 
Basically I am trying to add a Domain Group to a Local Group, but when I
do I get an error (From Windows 2000):
 
"A member could not be added to or removed from the local group because
the member does not exist"
 
Can't figure out why I get this error, my friend running a similar set
up had the same issue. I tried the new version of samba, samba 2.2.8a
from www.samba.org (a binary tho), and it suffered the same flaw.
 
I guess the only other critical information is that when I switched from
2.2.8a (and then back) I noticed that 2.2.8a had Domain Users listed
when I viewed the domain groups available, but 2.2.3a (Debian build)
didn't, occasionally it had a second group full of garbage characters,
but that seemed to be intermitant on my 2000 machine (User Manager for
Domains however showed it all the time, but with the characters
changing).
 
Secondly, when I list the members of the local group on all my machines,
it lists some already predifined users, 
\S-1-5-21-...-1000
\S-1-5-21-...-512
 
Now everything up to the -1000, or -512 is the PDC's SID, I have no idea
what they correspond to tho. I have a feeling that they happen to be my
groups, OTher things was that when I add a machine to the domain I
manually have to add the user to Local Administrators. These SID's are
probably the ones that are automatically added locally upon joining the
domain, and whatever resolves sids to name and backward is broken, or
something. I have no idea what to do tho. (I just broke something else
trying to fix this at the moment) 
 
Any ideas would help alot, thank you...
Steve Jr Ramage

>I have searched the globe but alas I can't come up with a solution.
>I am running Debian 3.0r0 with samba 2.2.3a12-3 (or something around
>there)
>and Kernel 2.4.18.
> 
>Basically I am trying to add a Domain Group to a Local Group, 
>but when I
>do I get an error (From Windows 2000):
> 
>"A member could not be added to or removed from the local group because
>the member does not exist"
Steve, if you're running Win2000 workstations then I'd recommend to stay
with 2.2.8a, it has the latest fixes, particularly those relating to
2000/XP.

As for the error you are getting, I have the same error when adding 
Domain Users to the local Power Users group, however, have found that
the following workaround works 9 times out of 10.

1. Attempt to add the D/U group to Power Users, get the error, ignore,
close.
2. Open up the (local) Users group, then add any domain user from your s
Samba PDC, save the changes.
3. Go back into Power Users, add the D/U group again, it should work fine
this time, don't ask me why, but it does.
4. Delete the domain user you added previously to the local Users group.

I've had to do this for all our Win2000 workstations, its a bit of a pain,
but it seems to work ok after that.  All my sites run 2.2.8a on the server,
and we have a mix of Win 2000 SP1-SP3 workstations.

HTH