samba - Feb 2006 - Windows UIDs

hi all.

how does samba create its uids and gids from the windows domain? and what can i
do to prevent it 'dropping' these mappings?

i've set up windows 2003 sfu to allow samba to map to the uid stored in
active directory (by using sfu nis), is this the safest way to ensure folder
permissions remain constant or am i being unnecessarily scared? :-)

thanks for any tips

john





_______________________________________________
Join Excite! - http://www.excite.com
The most personalized portal on the Web!

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

John Halfpenny wrote:
> hi all.
> 
> how does samba create its uids and gids from the windows domain? 
> and what can i do to prevent it 'dropping' these mappings?
uids and gids are allocated by winbindd on an as needed basis
in a monotonically increasing fashion.
> i've set up windows 2003 sfu to allow samba to map to the 
> uid stored in active directory (by using sfu nis), is this
> the safest way to ensure folder permissions remain constant
> or am i being unnecessarily scared? :-)
Probably unnecessarily scared.  Just keep winbindd_idmap.tdb
backed up.  If you have a single domain with no trusts, you
might prefer to look at the rid idmap backend.






cheers, jerry
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFD/IRxIR7qMdg1EfYRAvZKAJ9pEkHUbkogYltBC1pSUqed6S0O5QCg8Vgg
IXNDP4ydJ7PuMkX45QsF2AA=V93f
-----END PGP SIGNATURE-----

ok, thanks jerry.

i have used a sfu nis server to map my uids directly into ad, as i need to be
able to access the samba shares from macs as well as pcs. this is the only way i
can think of to ensure that the ad ldap authentication referenced by the macs
can contain the correct uid needed to access the samba box. :-)

john

 --- On Wed 02/22, Gerald (Jerry) Carter < jerry@samba.org > wrote:
From: Gerald (Jerry) Carter [mailto: jerry@samba.org]
To: jhalfpenny@excite.com
     Cc: samba@lists.samba.org
Date: Wed, 22 Feb 2006 09:34:09 -0600
Subject: Re: [Samba] Windows UIDs

-----BEGIN PGP SIGNED MESSAGE-----<br>Hash: SHA1<br><br>John
Halfpenny wrote:<br>> hi all.<br>> <br>> how does
samba create its uids and gids from the windows domain? <br>> and what
can i do to prevent it 'dropping' these
mappings?<br><br>uids and gids are allocated by winbindd on an as
needed basis<br>in a monotonically increasing
fashion.<br><br>> i've set up windows 2003 sfu to allow samba
to map to the <br>> uid stored in active directory (by using sfu nis),
is this<br>> the safest way to ensure folder permissions remain
constant<br>> or am i being unnecessarily scared?
:-)<br><br>Probably unnecessarily scared.  Just keep
winbindd_idmap.tdb<br>backed up.  If you have a single domain with no
trusts, you<br>might prefer to look at the rid idmap
backend.<br><br><br><br><br><br><br>cheers,
jerry<br>-----BEGIN PGP SIGNATURE-----<br>Version: GnuPG v1.4.2
(GNU/Linux)<br>Comment: Using GnuPG with Mozilla -
http://enigmail.mozdev.org<br><br>iD8DBQFD/IRxIR7qMdg1EfYRAvZKAJ9pEkHUbkogYltBC1pSUqed6S0O5QCg8Vgg<br>IXNDP4ydJ7PuMkX45QsF2AA=<br>=V93f<br>-----END
PGP SIGNATURE-----<br>

_______________________________________________
Join Excite! - http://www.excite.com
The most personalized portal on the Web!