similar to: LDAP Group mapping

Dear Sirs, I did the following command (against ldapsam backend): net groupmap add rid=3002 unixgroup=wheel type=local ntgroup=Marketoids comment=Mm -d 10 I just wanted to add new group. But instead of that I saw many-many-many records: lib/smbldap.c:smbldap_search(963) passdb/pdb_ldap.c:ldapsam_getgroup(2008) they all wanted to find group with gidNumber=4294967295, yes, sure, there's

ok, i noticed the gid of ldap group "users" was 539, but the one it was migrated from in /etc/group was 100, so I changed the gid and everything seems to work now? but why should it care that the gid is the same as it's /etc/group counterpart? --- On Tue 01/27, John H. < mrmailer@myway.com > wrote: From: John H. [mailto: mrmailer@myway.com] To: samba@lists.samba.org

hello, i still trying to deal with groups in a samba-pdc i am now closer to my problem: the net groupmap cant find the group about a wrong groupid. i found similar errormessages by googling, but no answer, which brings me to understand what exactly happens. it follows a snipp from smb.conf, a snipp from the debug-info i am getting. my ldap has ous people, groups and Idmap samba is 3.0.4 system

I'm running into some domain problems setting up Windows NT 4.0, Samba 3.0 (from source), OpenLDAP 2.0.27 and RedHat 9. I can't get a workstation to join the domain: when I attempt to join the domain from the workstation add machine gui with username and password, I'm told "The machine account for this computer either does not exist or is inaccessible"- but the add machine

I have been setting up samba 3.0.20b on Solaris 9 with a Sun Java System Directory Server v5.2 and have hit a couple of problems. The first is that if I run the command /net rpc group MEMBERS Staff -U administrator after prompting for the password it just gives the result of a blank line. Looking through the ldap logs it appears that samba finds the correct group mapping but then looks up the

Hi, Same problem for me, any clue ? Gana?l. owen@isrl.uiuc.edu@lists.samba.org on 07/31/2003 01:42:21 AM Envoy? par : samba-bounces+ganael.laplanche=edf.fr@lists.samba.org Pour : samba@lists.samba.org cc : Objet : [Samba] groupmember list fails with 3.0.0b3 and LDAP Hi all, I've been working on a PDC with group mapping with Samba-3.0.0Beta3 with OpenLDAP-2.1.22. Things

Hello, I'm using Samba3Beta1 and i try to map group. I create a posix group in my ldap: dn: cn=Administrateurs du domaine,ou=Groups,dc=middleearth,dc=ring objectClass: posixGroup cn: Administrateurs du domaine memberUid: root memberUid: administrateur gidNumber: 1000 And I try to map this group with the nt group : Domain Admins net groupmap add ntgroup="Domain Admins"

I need to clean up the groupmap setup - samba 3.0.0 / ldapsam Although I'm spitting out a fair amount of information, I'm going to concentrate on the Administrators entry which appears twice, this doesn't seem good... # net groupmap list Administrators (S-1-5-21-1292501092-333717336-619646970-544) -> root Backup Operators (S-1-5-21-1292501092-333717336-619646970-551) -> bin

the weirdness continues net groupmap modify ntgroup="Domain Admins" unixgroup="ntadmin" NT Group Domain Admins doesn't exist in mapping DB --- On Mon 01/26, John H. < mrmailer@myway.com > wrote: From: John H. [mailto: mrmailer@myway.com] To: samba@lists.samba.org Date: Mon, 26 Jan 2004 17:40:49 -0500 (EST) Subject: Re: [Samba] net:

hi i'm using samba 3.0.0 Beta 3 with LDAPv3 and --with-ldapsam users (unix+samba) are authenticated against ldap (nsswitch) since Beta3 we have to use winbindd, to map UID/GID correctly to RID v.v. IDMAP's are stored in LDAP (no .tdb-file) starting winbind give's me the following error ************ winbindd ************ #~ winbindd -FS -- snip -- winbindd version 3.0.0beta1

Should I delete them first? net groupmap list Domain Admins (S-1-5-21-3186189368-1246494298-1334198317-512) -> Domain Admins #NOTE - listed only one for clarity# # net groupmap modify sid=S-1-5-21-3186189368-1246494298-1334198317-512 unixgroup=root type=domain [2003/12/21 20:05:22, 0] passdb/pdb_ldap.c:ldapsam_update_group_mapping_entry(1954) ldapsam_update_group_mapping_entry: No group to

do I somehow have to add RID's? [root@linserv2 sbin]# ldapsearch -x -h localhost -b "o=Mullen,c=US" '(cn=Domain Admins)' version: 2 # # filter: (cn=Domain Admins) # requesting: ALL # # Domain Admins, Groups, Mullen, US dn: cn=Domain Admins,ou=Groups,o=Mullen,c=US objectClass: posixGroup objectClass: sambaGroupMapping gidNumber: 512 cn: Domain Admins memberUid:

When I try to join the wks into samba domain using Administrator account I receive following in logfile: [2003/11/20 10:03:21, 2] rpc_server/srv_samr_nt.c:access_check_samr_object(93) _samr_open_domain: ACCESS DENIED (requested: 0x00000211) [2003/11/20 10:03:21, 2] rpc_server/srv_samr_nt.c:access_check_samr_function(115) _samr_create_user: ACCESS DENIED (granted: 0x00000201; required:

Hello! I'm running Samba 3.0.0 with Openldap 2.1.22. Samba is my PDC and I'm using ldapsam as backend. Nearly everythings works, but I have a public share [tmp] which should be accessible without authentication from all clients even if they are no domain members. I think, my share definition is o.k. in smb.conf but if I click on the Samba server symbol on a client (Microsoft Windows

I'm following along in the Samba 3 By Example.pdf and on Page 190 it has me run: [root@gomer ~]# smbldap-useradd -m -a test2 No such object at /usr/sbin//smbldap_tools.pm line 473. I am running smbldap_tools .0.9.4 and I have ran configure.pm and set it up correctly. The stanza in the code of line 473: # all entries = does_sid_exist($sid,$config{scope}) sub does_sid_exist { my $sid =

Hi, <foreword> I am about to set up Samba 3.0.14a on Linux as PDC wit LDAP backend for our faculty. However, first tries have only partly been successful. First I added samba LDAP-Schema attributes to existing account, created their Samba passwords with smbpasswd and it worked so that normal users could log in via the windows network neighborhood and use the shares. But, I couldn't

OK. I am starting to believe that Samba 3.0.x is not stable. At least, the documentation for Samba as PDC with OpenLDAP backend (which is what I have been trying to do for four days) is crap. All the documentation for 3.0.x is mixed with 2.2.x. Most documents start as instructions for 3.0.x but put a lot of information that doesn't apply to 3.0.x, but 2.2.x. People in the mailing list

dn: cn=Domain Admins,ou=groups,dc=mydomain objectClass: top objectClass: posixGroup objectClass: sambaGroupMapping gidNumber: 512 cn: Domain Admins description: Netbios Domain Administrators sambaSID: S-1-5-21-3936576374-1604348213-1812465911-512 sambaGroupType: 2 displayName: Domain Admins memberUid: root memberUid: sadmin dn: cn=Domain Users,ou=groups,dc=mydomain objectClass: top objectClass:

hi, we recently upgraded from samba 2.2.8a w/ldap to samba3 w/ldap and having troubles with domain group mappings. first symptom is that net groupmap list returns nothing. [root@lola root]# net groupmap list [root@lola root]# if we try to add a groupmapping, the command fails: net groupmap add sid=<sid-gid> ntgroup="Domain Admins" unixgroup=domadm type=domain --debuglevel=4

Hello, it's me again. Some friends asked for slapcat outputs as I remember. I arrived to office and I got'em & posting here if you can help me it'll be very appreciated. Thanks in advance ---==system log taken during login try==--- Mar 10 15:21:29 Storm slapd[5841]: @(#) $OpenLDAP: slapd 2.2.27 (Sep 9 2005 17:48:51) $