The RID portion doesn't really matters as it doesn't clash with known
RIDs (below 1000), and other created RIDs (you cannot have two accounts
with the same RID, composing the same SID).
Regards.
Edmundo Valle Neto
mikelOn escreveu:
Sorry, I was wrong. After changing such value the machines are added with a
number above 50000 but still cannot join the domain.
I will keep comparing the records created by the script and the LAM and give
some feedback.
Thanks for your help.
Asier Baranguán wrote:
mikelOn escribió:
This morning I wanted to review the smbldap-useradd perl script to see if
there is any place (config file or so) where I can indicate the base
number
I want for the machines.
¿Do I need to set that "base" uidNumber somewhere? ¿Why must it be set to
above than 50000?
¿Did you ever experience anything similar?
(I suppose you have executed the smbldap-populate script)
When you execute the smbldap-populate you can pass some parameters to set
the first
uid/gid number that will be assigned to the users/groups. This scripts
read the value from
the sambaDomainName LDAP entry and updates it when adding groups/users. I
think this
values are the uidNumber and gidNumber attributes, but I'm not sure.
As LAM doesn't use the smbldap scripts it has different starting numbers
(see the lam.conf
file, usually at /usr/share/ldap-account-manager/config) AFAIK this is
used to separate
regular unix accounts from LDAP accounts to prevent overlapping.
Look at your /etc/passwd file and slapcat output for id collision. Perhaps
that was your
problem.
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
