Looks like I'm seeing bug 1493[*]. I have posted the relevant info to
the bug report.
[*] https://bugzilla.samba.org/show_bug.cgi?id=1493
On 8/18/05, Svend Sorensen <ssorensen@gmail.com>
wrote:> I have a Samba box joined to a Windows 2003 AD. I have noticed a
> strange problem with adding users to groups. I added user 'shw' to
> the group 'project1' on the AD. When the user logs in the the
Samba
> box, he does not have the permissions of someone in the 'project1'
> group. When I run 'id shw', group 'project1' shows up.
However when
> I run 'id' as shw2, group 'project1' does not show up. For
example:
>
> # getent group project1
> project1:x:15026:svend,shw
>
> # su - shw -c id shw
> uid=15013(shw) gid=15000(domain users) groups=15000(domain
> users),15026(project1)
>
> # su - shw -c id
> uid=15013(shw) gid=15000(domain users) groups=15000(domain users)
>
> # wbinfo -r shw
> 15000
> 15026
>
> I have restarted the winbindd daemon several times. Has anyone seen
> this behavior before? Any know fixes?
>
> Details:
> Samba 3.0.14a on Slackware 10.0
>
> /etc/samba/smb.conf
> [global]
> workgroup = SOLARSYSTEM
> netbiosname = earth
> realm = solarsystem.us
> security = ads
> password server = sun.solarsystem.us
> idmap uid = 15000-20000
> idmap gid = 15000-20000
> winbind user default domain = yes
> template shell = /bin/bash