Jim C. wrote:
| I tried this a week ago and afterward, none of the windows clients on | our network would recognize "admin users" (Domain admins) as actual ... | admin users.
Could this have something to do with LDAP posixGroup's vrs. groupOfNames? posixGroup is outdated and cannot be used to gain access to the database itself. This means that your admins would not be able to do stuff like add/remove users but might be able to do things like delete users files and stuff. If you want admins to be database admins as well you need to add them to a groupOfNames type group also.
We were not using LDAP at all - just flat /etc/passwd, /etc/group and /etc/samba/smbpasswd files. There isn't anything special about our setup, but still the transfer/shift of PDC machines never did work. Perhaps I needed to port over the "SID" from the old PDC to the new?
Abe -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
