This is the mail archive of the cygwin mailing list for the Cygwin project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

Re: Permissions problem - odd setup


Andrew DeFaria wrote:
Andrew DeFaria wrote:
Markus Schönhaber wrote:

Don't know if this is of any help: you can set the SIDs for the user and the user's primary group on the Samba box with pdbedit ... -U <SID> -G <SID> ...Maybe it helps if you use the same SIDs your Windows Domain account has.
OK, got the admin to do that command. Remapped the drive. Same problems. Any other ideas?
It seems that this didn't work because we are using only smbpasswd and need to update to using tdbsam (http://swamp.chl.chalmers.se/samba/docs/man/Samba-HOWTO-Collection/passdb.html#pdbeditthing):

tdbsam

       This backend provides a rich database backend for local servers.
       This backend is not suitable for multiple domain controllers
       (i.e., PDC + one or more BDC) installations.

       The /tdbsam/ password backend stores the old / smbpasswd/
       information plus the extended MS Windows NT/200x SAM information
       into a binary format TDB (trivial database) file. The inclusion
       of the extended information makes it possible for Samba-3 to
       implement the same account and system access controls that are
       possible with MS Windows NT4/200x-based systems.

       The inclusion of the /tdbsam/ capability is a direct response to
       user requests to allow simple site operation without the
       overhead of the complexities of running OpenLDAP. It is
       recommended to use this only for sites that have fewer than 250
       users. For larger sites or implementations, the use of OpenLDAP
       or of Active Directory integration is strongly recommended.

Additionally:

   The resolution of SIDs to UIDs is fundamental to correct operation
   of Samba. In both cases shown, if winbindd is not running or cannot
   be contacted, then only local SID/UID resolution is possible. See
   resolution of SIDs to UIDs
   <http://swamp.chl.chalmers.se/samba/docs/man/Samba-HOWTO-Collection/passdb.html#idmap-sid2uid>
   and resolution of UIDs to SIDs
   <http://swamp.chl.chalmers.se/samba/docs/man/Samba-HOWTO-Collection/passdb.html#idmap-uid2sid>
   diagrams.

Apparently I need to have them switch to tdbsam style backend in order to set things like SIDs and the like. This might be a hard sell...
--
Don't make no sense that common sense don't make no sense no more. - John Prine



-- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Problem reports: http://cygwin.com/problems.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]