No problem, Mecki, glad to help. From that message it does appear that udt isn't able to resolve the user's name from their numeric ID. One other thing to check is this setting in smb.conf:
winbind enum users = true If that's set to false, that's a likely cause of the error you're getting. The default is true, though, so I doubt that's it. If the enum users setting is true, when you execute "getent passwd", you should get a unified list of all local and AD users. The system calls that getent is using to return the list are the same that any other application should be using. If you're not getting a unified list, then something is wrong with the winbind config. If you are getting a unified list, then I suspect something non-standard has been written into udt and there might not be an easy fix. -John -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Mecki Foerthmann Sent: Friday, April 06, 2012 1:46 PM To: [email protected] Subject: Re: [U2] Logging on to UD 7.2 on RH Linux using Active Directory andwinbind Thanks John, we will check all those back at work on Tuesday. This is a sample of the actual error message we see: */Illegal user id = (16777216). Mecki /* On 06/04/2012 21:13, John Hester wrote: > One other potential issue just came to mind. I think AD user names > are returned by winbind in the form "domain\user" by default. If your > winbind is configured this way, it could be that udt doesn't like > seeing the backslash character in the user name. This behaviour can > be turned off with the following setting in smb.conf: > > winbind use default domain = yes > > You can see how user names are currently being reported by winbind > with wbinfo -u. > > -John > > -----Original Message----- > From: [email protected] > [mailto:[email protected]] On Behalf Of Mecki > Foerthmann > Sent: Thursday, April 05, 2012 9:08 AM > To: U2 Users List > Subject: [U2] Logging on to UD 7.2 on RH Linux using Active Directory > andwinbind > > We are finally in the process of upgrading our old UD 5.2 system on > Solaris to 7.2 running on a virtual RH Linux server. > So far everything seems to work OK. > We can log into the database as the root user fine. > We can log into the database as a local linux user fine. > But we don't want to create local users on the linux box as it is > another set of user accounts / passwords to maintain. > To get round this we are using winbind to allow users to login to the > Linux server with their Windows Active Directory credentials. > This works well however when we come to run the udt command in the > data directory we get the following error "Illegal User ID" then the > UID of the Winbind user. > There is obviously some check that occurs when udt starts to see if > the user is a valid linux user, udt must not be able to query the > authentication mechanism and therefore will not allow the user to run > udt. > Is there a switch or another way to make this work? > > Thanks > > Mecki > _______________________________________________ > U2-Users mailing list > [email protected] > http://listserver.u2ug.org/mailman/listinfo/u2-users > _______________________________________________ > U2-Users mailing list > [email protected] > http://listserver.u2ug.org/mailman/listinfo/u2-users _______________________________________________ U2-Users mailing list [email protected] http://listserver.u2ug.org/mailman/listinfo/u2-users _______________________________________________ U2-Users mailing list [email protected] http://listserver.u2ug.org/mailman/listinfo/u2-users
