[Pkg-samba-maint] Bug#899269: Bug#899269: Bug#899269: changes to 4.8
L.P.H. van Belle
belle at bazuin.nl
Wed Jun 20 14:18:57 BST 2018
Hai Mathieu,
The user got also reply on the list now but Rowland ( from samba devs ) pointed a good thing out.
Linux user nobody : uid 65534
That wil conflic with the defaults used for the domain id ranges.
Quote from Rowland:
So, what I recommend is, use '1000-2999' for local Unix users &
groups, '3000-7999' for the 'Well known SIDS' and anything outside the
Domain and start the main AD DOMAIN at '10000' (which is, incidentally,
the number Microsoft chose).
This leads to lines such as these in smb.conf:
idmap config *:backend = tdb
idmap config *:range = 3000-7999
idmap config SAMDOM : backend = rid
idmap config SAMDOM : range = 10000-999999
Now, for Debian that would be
idmap config SAMDOM : range = 10000-65533
But that is a small range or debian should advice
idmap config SAMDOM : range = 100000-999999
Anything from/above 100.000 for samba AD.
So imo, the debian setup the README.Debian should mention something about this.
Best regards,
Louis
> -----Oorspronkelijk bericht-----
> Van: Mathieu Parent [mailto:math.parent at gmail.com]
> Verzonden: woensdag 20 juni 2018 15:08
> Aan: Louis; 899269 at bugs.debian.org
> CC: Chad William Seys
> Onderwerp: Re: Bug#899269: [Pkg-samba-maint] Bug#899269:
> Bug#899269: changes to 4.8
>
> Le mer. 20 juin 2018 à 12:39, L.P.H. van Belle
> <belle at bazuin.nl> a écrit :
> >
> > No, dont try below.
> >
> > Thats wrong ( sorry Mathieu )
>
> Yes. This was copied from manpage, then (few minutes) later corrected.
> (I removed the ad backend, because it requires SFU to be enabled and
> other requirements.)
>
> The idea Chad William Seys, is that specifying the idmap
> range is mandatory.
>
>
> Regards
>
> --
> Mathieu Parent
>
>
More information about the Pkg-samba-maint
mailing list