I had problems with that as well. Try doing net groupmad add rid=512
ntgroup="Domain Admins" unixgroup=adm
At one point I was just going to hack it into the LDAP by hand.
On Sunday 21 December 2003 08:47, Craig White wrote:> do I somehow have to add RID's?
>
> [root@linserv2 sbin]# ldapsearch -x -h localhost -b
"o=Mullen,c=US"
> '(cn=Domain Admins)'
> version: 2
>
> #
> # filter: (cn=Domain Admins)
> # requesting: ALL
> #
>
> # Domain Admins, Groups, Mullen, US
> dn: cn=Domain Admins,ou=Groups,o=Mullen,c=US
> objectClass: posixGroup
> objectClass: sambaGroupMapping
> gidNumber: 512
> cn: Domain Admins
> memberUid: Administrator
> description: Netbios Domain Administrators
> sambaSID: S-1-5-21-3186189367-1246494297-1334198316-512
> sambaGroupType: 2
> displayName: Domain Admins
>
> # search result
> search: 2
> result: 0 Success
>
> # numResponses: 2
> # numEntries: 1
> [root@linserv2 sbin]# ldapsearch -x -h localhost -b
"o=Mullen,c=US"
> '(cn=adm)'
> version: 2
>
> #
> # filter: (cn=adm)
> # requesting: ALL
> #
>
> # adm, Group, Mullen, US
> dn: cn=adm,ou=Group,o=Mullen,c=US
> objectClass: posixGroup
> objectClass: top
> cn: adm
> gidNumber: 4
> memberUid: daemon
> memberUid: root
>
> # search result
> search: 2
> result: 0 Success
>
> # numResponses: 2
> # numEntries: 1
> [root@linserv2 sbin]# net groupmap add ntgroup="Domain Admins"
> unixgroup=adm
> No rid or sid specified, choosing algorithmic mapping
> [2003/12/21 06:43:12, 0]
> passdb/pdb_ldap.c:ldapsam_search_one_group(1612)
> ldapsam_search_one_group: Problem during the LDAP search: LDAP error:
> (No such object)ldapsam_search_one_group: Problem during the LDAP
> search: LDAP error: (No such object)ldapsam_search_one_group: Problem
> during the LDAP search: LDAP error: (No such
> object)ldapsam_search_one_group: Problem during the LDAP search: LDAP
> error: (No such object)ldapsam_search_one_group: Problem during the
> LDAP search: LDAP error: (No such object)ldapsam_search_one_group:
> Problem during the LDAP search: LDAP error: (No such
> object)ldapsam_search_one_group: Problem during the LDAP search: LDAP
> error: (No such object)ldapsam_search_one_group: Problem during the
> LDAP search: LDAP error: (No such object)ldapsam_search_one_group:
> Problem during the LDAP search: LDAP error: (No such
> object)ldapsam_search_one_group: Problem during the LDAP search: LDAP
> error: (No such object)ldapsam_search_one_group: Problem during the
> LDAP search: LDAP error: (No such object)ldapsam_search_one_group:
> Problem during the LDAP search: LDAP e +>
> rror: (No such object)ldapsam_search_one_group: Problem during the
> LDAP search: LDAP error: (No such object)ldapsam_search_one_group:
> Problem during the LDAP search: LDAP error: (No such
> object)ldapsam_search_one_group: Problem during the LDAP search: LDAP
> error: (No such object)ldapsam_search_one_group: Problem during the
> LDAP search: LDAP error: (No such object)ldapsam_search_one_group:
> Problem during the LDAP search: LDAP error: (No such
> object)ldapsam_search_one_group: Problem during the LDAP search: LDAP
> error: (No such object)ldapsam_search_one_group: Problem during the
> LDAP search: LDAP error: (No such object)ldapsam_search_one_group:
> Problem during the LDAP search: LDAP error: (No such
> object)ldapsam_search_one_group: Problem during the LDAP search: LDAP
> error: (No such object)ldapsam_search_one_group: Problem during the
> LDAP search: LDAP error: (No such object)ldapsam_search_one_group:
> Problem during the LDAP search: LDAP error: (No such
> object)ldapsam_search_one_group: Problem during +>
> adding entry for group Domain Admins failed!
--
Greg Dickie
just a guy
greg@justaguy.ca