similar to: Can't add groups or groupmaps with ldapsam

Hi, I'm trying to join ?linux machines to AD domain with the help of winbind. In order to make account managent more easier, I want to create corresponding group maps from every linux native group, then join domain users/groups to the new LOCAL groupmap. At present, BUILTIN groupmap works fine with the steps: net groupmap add sid=S-1-5-32-544 unixgroup=admin ntgroup=BUILTIN\\Administrators

hello, trying to set up an pdc with 3.0.4 on solaris with openldap creating groups and adding groupmaps does not work. net group add asks the password for the ldap-manager, comes back without any message, but the group does not exist after that. if i try to make a groupmap without adding a wingroup first, the result is the following (no question for the password!) /usr/local/samba/bin/net

I have a unix group that owns some files on a share, and I'd like to set up a group mapping so that an Active directory group (with an exising mapping in winbind from earlier use) gets access to these files via a mapping. I've been fooling around with net groupmap add, and haven't been able to get this set up. The group Domain Users has an existing mapping to gid 10004, which winbind

Considering the following page... http://us3.samba.org/samba/docs/man/guide/small.html First of, my compliments to John for some great examples to study. In my mind I see three levels of security: 1) Linux - such as SSH'ing into the Linux server, Linux accounts and groups come into play here 2) Samba PDC - "Domain Admins" "Domain Users" come into play here. Examples

Hello, i have some problems migrating a Windows 2000 PDC to a Debian GNU/Linux Samba Server, i want to migrate it to a LDAP backend.. but as i'm kind of newbie with ldap and samba migration stuff, i preffered to migrate it to tdbsam first and try it for a while, if everything works fine, then switch to a ldap backend. The problem is that Essential Windows Groups are automatically created, so

Hi I have samba 3.0.14a (debian/stable) and wonder where the problem is that running this command: # net groupmap add ntgroup="Domain Admins" unixgroup=ntadmins rid=512 type=d gives: adding entry for group Domain Admins failed! but (note changed rid) # net groupmap add ntgroup="Domain Admins" unixgroup=ntadmins rid=1000 type=d works fine. Hm, winbind is not working, but I

Relevant part of "net3 groupmap list" is System Operators (S-1-5-21-1617713866-2789119093-1479812082-1007) -> sys In howto there is the following example net groupmap modify ntgroup="System Operators" unixgroup=sys net groupmap modify ntgroup="Power Users" unixgroup=sys You can add System Operators but trying to add Power Users fails. If you do it in reverse

Hi I am new to linux & Samba. I would like to setup Samba as a domain controller and using Fedora-ds for authentication. I have read some documents from www.samba.org but I am still in the mist. Here is my dumb questions about Samba as follows. 1. Is CENTOS4.6+SAMBA3.0.25 as PDC +FEDORA-DS possible? 2. Is this HOWTO from

Hi, Before Samba 3.0.0 RC4 I was running Samba 3.0.0 beta3, and when I upgraded to RC4, I began having problems with group mappings. I didn't notice at first, because on my laptop I don't normally log on to the domain. I just noticed when I tried to use my desktop and log on to the domain... I don't have Domain Admin privileges. So, I look at 'net groupmap list' ... and it

Hi, I think at first you have to do a net groupmap add all the well known Groups. System Operators (S-1-5-32-549) -> -1 Replicators (S-1-5-32-552) -> -1 Guests (S-1-5-32-546) -> -1 Domain Users (S-1-5-21-3732367786-856876144-3282938955-513) -> -1 Domain Admins (S-1-5-21-3732367786-856876144-3282938955-512) -> -1 Power Users (S-1-5-32-547) -> -1 Domain Guests

We would like to migrate grom Winnt 4.0 to Samba 3 with ldap support. We have installed openldap on Rh 2.1 AS and created starting databases with IDEALX.org scripts. Now i have added computer to domain no problems and than I tried to migrate users and groups, but only user migrate but there is a problem " Primary group of Administrator has no mapping!" ( this is error for every user).

Hi, we are using a _single_ LDAP server as backend for _multiple_ Samba standalone file servers (security=user). This LDAP server serves mainly other purposes and access for Samba is read only so the situation is not optimal but "it works for us". Still I don't understand one phenomenon concerning visibility of LDAP groups. The LDAP configuration in smb.conf for all our Samba

Hello, I have a test environment with 1 windows 2000 AD domain pdc ( mixed mode install ), 1 linux server ( to become pdc ) and a win xp box to test logon when the migration was completed. The problem is no matter what I try after the migration the win xp's logonserver = windows server not linux server. I have no idea what is going on here. I've listed the process for migration

Hi, today I tried to setup domainadmins for local administration tasks like installing software etc. I followed the instructions to create a unix group and added unix users to the group. The same user had a working roaming windows profile. After that I did a "net group add ntgroup="Domain Admins" unixgroup=admin". After logging on to the windows xp SP2 workstation,

Hello. After fresh install. Samba and ldap seems to run normally ( I can join win2k workstation to linux samba pdc ). Using yast I create a system group named domadmin But I am unable to map "Domain Admins" to domadmin I am unable to map "Domain Admins" to existing ntadmin group I am unable to mofify mapping "Domain Admins" to domadmin group Thank you for

Firstly I apologise for the length of this query but I am hoping that if I document everything I did someone might respond / be able to help. My Configuration is Samba 3.0.2a as a PDC on Redhat 8. I cannot for the life of me get the "Domain Admins" functionality to work I am hoping that another set of eyes can shed some light on this problem as I have now spent 41 hrs googling /

Hello I have been solving a problem how to make a nonroot user able to administer the domain (add users, groups, modify them etc.) from Windows workstation using usrmgr.exe It looks like what is stated in Samba HOWTO collection as prerequisites is not enough. First I found Chapter 12 cxl "How to make Samba PDC users member of the Domain Admins group" - made the nonroot user member of

We have bumped into a most odd problem. Server: Debian Etch and their Samba 3.0.24-2 Client: WinXP SP2, MSI v3, all hot fixes The following settings are in place on the server: #!/bin/bash # # initGrps.sh # Map Windows Domain Groups to UNIX groups net groupmap add ntgroup="Domain Admins" unixgroup=domadmin rid=512 type=d net groupmap add ntgroup="Domain Users"

Howdy People, I have a problem with roaming profiles in samba 3.0.5 on redhat9 ( installed from the rpm with rpm -Uv samba.3.0.5.rpm I am not using LDAP ( dont know how and as I am a Netware person on a very steep learning curve with Samba, didn't want to complicate the installation after seeing every second posting on this list as a ldap problem). The smb.conf file is listed below. The

Hello, Second post: first had logs attached but was too big. I have a test environment with 1 windows 2000 AD domain pdc ( mixed mode install ), 1 linux server ( to become pdc ) and a win xp box to test logon when the migration was completed. The problem is no matter what I try after the migration the win xp's logonserver = windows server not linux server. I have no idea what is going