I was looking through the change log of 3.3.0 and noticed that a new idmap_hash was introduced that seems to play well with trusted domains. What means are available to convert all my rids to this new hash so I can update file permissions? Thanks, Robert LeBlanc Life Sciences & Undergraduate Education Computer Support Brigham Young University
Robert, Robert LeBlanc wrote:> I was looking through the change log of 3.3.0 and noticed that a new > idmap_hash was introduced that seems to play well with trusted domains. What > means are available to convert all my rids to this new hash so I can update > file permissions?You mean updating the file permissions on disk? That would be a manual (but scriptable) process. You will need to flush the winbind idmap cache when swapping to the new plugin in order to see the new uid and gid values though. cheers, jerry -- ====================================================================http://www.plainjoe.org/ "What man is a man who does not make the world better?" --Balian -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 252 bytes Desc: OpenPGP digital signature URL: <http://lists.samba.org/pipermail/samba/attachments/20091019/ff1d61b7/attachment.pgp>
On Mon, Oct 19, 2009 at 7:09 AM, Gerald Carter <jerry at plainjoe.org> wrote:> Robert, > > Robert LeBlanc wrote: > > I was looking through the change log of 3.3.0 and noticed that a new > > idmap_hash was introduced that seems to play well with trusted domains. > What > > means are available to convert all my rids to this new hash so I can > update > > file permissions? > > You mean updating the file permissions on disk? That would be > a manual (but scriptable) process. You will need to flush the > winbind idmap cache when swapping to the new plugin in order to > see the new uid and gid values though. > > How would I access the old mapping after flushing and changing to the newmapping? Is the old mapping accessible somehow that I can use chown and chgrp after inspecting each file and directory with all their ACLs? Robert LeBlanc Life Sciences & Undergraduate Education Computer Support Brigham Young University