Rowland Penny
2014-Dec-01 17:11 UTC
[Samba] uidNumber. ( Was: What is --rfc2307-from-nss ??)
On 01/12/14 17:09, steve wrote:> On 01/12/14 17:31, Greg Zartman wrote: >> On Mon, Dec 1, 2014 at 1:33 AM, Rowland Penny >> <rowlandpenny at googlemail.com> >> wrote: >> >>> >>>> I do what windows does, it ignores the RID (what you call 'the last >>>> set >>> of digits from SID') and uses a builtin mechanism to store the next >>> uid & >>> gidNumber. >> >> >> The builtin users/groups use the RID for the GID/UID. > > Not in any domain we've ever seen. The RID of BUILTIN\Admins is 300000? > >No its not, 300000 is the xidNumber of BUILTIN\Admins :-) Rowland
On 01/12/14 18:11, Rowland Penny wrote:> On 01/12/14 17:09, steve wrote: >> On 01/12/14 17:31, Greg Zartman wrote: >>> On Mon, Dec 1, 2014 at 1:33 AM, Rowland Penny >>> <rowlandpenny at googlemail.com> >>> wrote: >>> >>>> >>>>> I do what windows does, it ignores the RID (what you call 'the last >>>>> set >>>> of digits from SID') and uses a builtin mechanism to store the next >>>> uid & >>>> gidNumber. >>> >>> >>> The builtin users/groups use the RID for the GID/UID. >> >> Not in any domain we've ever seen. The RID of BUILTIN\Admins is 300000? >> >> > No its not, 300000 is the xidNumber of BUILTIN\Admins :-) > > Rowland >English please. Notice the question mark after the last '0';)
Rowland Penny
2014-Dec-01 17:25 UTC
[Samba] uidNumber. ( Was: What is --rfc2307-from-nss ??)
On 01/12/14 17:16, steve wrote:> On 01/12/14 18:11, Rowland Penny wrote: >> On 01/12/14 17:09, steve wrote: >>> On 01/12/14 17:31, Greg Zartman wrote: >>>> On Mon, Dec 1, 2014 at 1:33 AM, Rowland Penny >>>> <rowlandpenny at googlemail.com> >>>> wrote: >>>> >>>>> >>>>>> I do what windows does, it ignores the RID (what you call 'the last >>>>>> set >>>>> of digits from SID') and uses a builtin mechanism to store the next >>>>> uid & >>>>> gidNumber. >>>> >>>> >>>> The builtin users/groups use the RID for the GID/UID. >>> >>> Not in any domain we've ever seen. The RID of BUILTIN\Admins is 300000? >>> >>> >> No its not, 300000 is the xidNumber of BUILTIN\Admins :-) >> >> Rowland >> > English please. Notice the question mark after the last '0';)I thought I was speaking (well typing) English :-D Lets put it this way, samba4 gets the RID for Administrators (S-1-5-32-544), maps this to the xidNumber 3000000 and stores all this in idmap.ldb. Does that answer all questions ?????? Rowland