I am not sure whether it counts or not but my domain is in native mode. I want to know what other people's experiences are with domain local groups.
I have a "domain local group" called localg. sid_to_gid() fails because the returned name_type is SID_NAME_UNKNOWN. I traced it down using gdb, and the result from winbindd_request(LOOKUPSID....) is: dom_name = "ZHOU", '\000' <repeats 251 times>, name = "localg", '\000' <repeats 249 times>, type = 8}, ^^^^^^^^ >From smb.h: /* SID Types */ enum SID_NAME_USE { SID_NAME_USE_NONE = 0,/* NOTUSED */ SID_NAME_USER = 1, /* user */ SID_NAME_DOM_GRP = 2, /* domain group */ SID_NAME_DOMAIN = 3, /* domain: don't know what this is */ SID_NAME_ALIAS = 4, /* local group */ SID_NAME_WKN_GRP = 5, /* well-known group */ SID_NAME_DELETED = 6, /* deleted account: needed for c2 rating */ SID_NAME_INVALID = 7, /* invalid account */ SID_NAME_UNKNOWN = 8 /* oops. */ }; So what SID_NAME_ALIAS is for (comment says local group)? Is it safe to just change the above to the following without any other code change? SID_NAME_LOCAL_GRP = 8, SID_NAME_UNKNOWN = 9 Chere