Re: [Samba] rids disappeared from net groupmap list output
Vincent Régnard a écrit : ** on 3.0.25: [EMAIL PROTECTED]:/tmp# net groupmap add sid="S-1-5-21-774874489-2272698005-2144578956" rid=512 ntgroup="Domain Admins" unixgroup="smbadmins" type=b Successfully added group Domain Admins to the mapping db as a wellknown group But: [EMAIL PROTECTED]:/tmp# net groupmap list Domain Admins (S-1-5-21-774874489-2272698005-2144578956) -> smbadmins No rid shows up ? (same with type domain option) After a few more tests, I realize I have to write explicitly the RID in the SID string to get it work properly: [EMAIL PROTECTED]:/tmp# net groupmap add sid="S-1-5-21-774874489-2272698005-2144578956-512" ntgroup="Domain Admins" unixgroup="smbadmins" type=b or this way also works: [EMAIL PROTECTED]:/tmp# net groupmap add rid=512 ntgroup="Domain Admins" unixgroup="smbadmins" type=b It was not clear to me at first glance but now works as expected ;) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] rids disappeared from net groupmap list output
Hi all, I used to see clearly rids in groupmaps whith my old 3.0.20. I am planning to switch to 3.0.25 but when I create the wellknowns and other groupmaps the same way as I did before, rid seams not to show up anymore: ** on 3.0.20 I can read my groupmap rids (512 here): [EMAIL PROTECTED] net groupmap list Domain Admins (S-1-5-21-362411026-3941723405-3168679234-512) -> smbadmin ** on 3.0.25: [EMAIL PROTECTED]:/tmp# net groupmap add sid="S-1-5-21-774874489-2272698005-2144578956" rid=512 ntgroup="Domain Admins" unixgroup="smbadmins" type=b Successfully added group Domain Admins to the mapping db as a wellknown group But: [EMAIL PROTECTED]:/tmp# net groupmap list Domain Admins (S-1-5-21-774874489-2272698005-2144578956) -> smbadmins No rid shows up ? (same with type domain option) Is this a normal expected behaviour ? Or should I still have the rid appear as before ? Did I misuse the configuration tools or missed something ? Thanks for your comments. Vincent -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] machine trust account password backup
Hi all, I am facing a problem regarding machine trust account password backup for samba-3 acting as NT4 PDC. If I understand it well, password for machine trust account are always modified the first time a windows host joins the domain. I use smbpasswd backend (samba3.0.25rc1), and the password in modified in the db file smbpasswd. Is there a way to now this password in a clear text format ? I manually create user and machine accounts (Unix+samba) and I actually need this because my rescue system automatically recreates smbpasswd from cleartext information stored in a remote DB. It's been working well for years with user accounts, but now that I switched to samab-as-PDC I encounter a big problem (I cant get the machine password to have them stored in my backup database). I am looking for a solution: - Ideally I would like to set an initial password for machine trust account and force the client to use this password: the samba password for the machine would be "imported" in windows registry (maybe manually) ? Can samba force windows to use a given password for machine trust account ? - Maybe there are some possibilies to get the cleartext transcoding of the password that is set when joining the domain the first time so that I can back-it up in my database ? What is the "standard" solution you would recommand ? Do I rather backup smbpasswd file and restore lines concerning machine trust account ? Any comments are welcome. Vincent -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba