RE: Winbind doesnt enumerate more than one group from an AD domain

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Tue, 29 Oct 2002, James Braid wrote: I had the same problem aswell.. I found it was due to the fact the groups weren't 'Global' groups only 'Local' groups... Apparently they need to be Global or Universal to be shown by Winbind. I

Re: Winbind doesnt enumerate more than one group from an AD domain

, October 25, 2002 7:26 PM Subject: Re: Winbind doesnt enumerate more than one group from an AD domain

RE: Winbind doesnt enumerate more than one group from an AD domain

I had the same problem aswell.. I found it was due to the fact the groups weren't 'Global' groups only 'Local' groups... Apparently they need to be Global or Universal to be shown by Winbind. I have tried using Global and Universal groups on the AD server and neither type seems to work.

Re: Winbind doesnt enumerate more than one group from an AD domain

On Fri, Oct 25, 2002 at 11:09:11PM +0200, Simo Sorce wrote: Domain local groups existed under Windows NT 4.0. They were just available among DC's of the domain. See my other post in response to JF. To my knowledge (derived from some doc on msdn) they are a different thing. local groups

RE: Winbind doesnt enumerate more than one group from an AD domain

Sorry about this, but this email address seems to be a bit dodgy. Please reply to [EMAIL PROTECTED] Thanks, James

Re: Winbind doesnt enumerate more than one group from an AD domain

- Original Message - From: James Braid [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, October 25, 2002 1:45 PM Subject: Winbind doesnt enumerate more than one group from an AD domain Hi all, I have been having some problems with winbind not seeing all the groups that users on

Re: Winbind doesnt enumerate more than one group from an AD domain

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Fri, 25 Oct 2002, Gareth Davies wrote: Apparently they need to be Global or Universal to be shown by Winbind. Local groups are supported by winbindd using rpc. The LDAP backends for winbindd needs this support added (it's a no-op function

Re: Winbind doesnt enumerate more than one group from an AD domain

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Fri, 25 Oct 2002, Jean Francois Micouleau wrote: you mean local groups within the S-1-5-32 sid sub tree or the local domain groups under the PDC SID ? If that's the first case, winbind shouldn't even read them, they have no meaning outside

Re: Winbind doesnt enumerate more than one group from an AD domain

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 25 Oct 2002, Simo Sorce wrote: JF is totally right winbind should never ask for PDCs local group. But there is a third option, MS has defined an obscure (to me) new type of group in w2k, the global local group do you mean this one jerry?

Re: Winbind doesnt enumerate more than one group from an AD domain

On Fri, 25 Oct 2002, Gerald (Jerry) Carter wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Fri, 25 Oct 2002, Jean Francois Micouleau wrote: you mean local groups within the S-1-5-32 sid sub tree or the local domain groups under the PDC SID ? If that's the first case,

Re: Winbind doesnt enumerate more than one group from an AD domain

On Fri, 2002-10-25 at 21:55, Gerald (Jerry) Carter wrote: Domain local groups existed under Windows NT 4.0. They were just available among DC's of the domain. See my other post in response to JF. To my knowledge (derived from some doc on msdn) they are a different thing. local groups (same

Re: Winbind doesnt enumerate more than one group from an AD domain

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Fri, 25 Oct 2002, Jean Francois Micouleau wrote: ok then it's still a problem of vocabulary :) Can we settle on a definitive wording ? local groups, domain groups, domain local groups, universal groups. Fine by me :-) cheers, jerry