Bug 142620 - Linux/Unix ID mapping is broken
Summary: Linux/Unix ID mapping is broken
Keywords:
Status: CLOSED UPSTREAM
Alias: None
Product: Fedora
Classification: Fedora
Component: samba
Version: 3
Hardware: i386
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Jay Fenlason
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2004-12-10 22:36 UTC by Eral Trmb
Modified: 2014-08-31 23:26 UTC (History)
1 user (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2005-01-31 21:51:38 UTC
Type: ---
Embargoed:


Attachments (Terms of Use)

Description Eral Trmb 2004-12-10 22:36:34 UTC
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.5)
Gecko/20041110 Firefox/1.0

Description of problem:
I have a user with a different name in linux and the win domain. All
other users can access the shares, but not this one.



Version-Release number of selected component (if applicable):
samba-3.0.9-1.fc3

How reproducible:
Always

Steps to Reproduce:
1. in /etc/samba/smbusers:
LinUID = WinUID

2. I use security = domain and the machine is registered at the DC level.

3. All windows users can access the shares exported by the linux
server as long as there LinUID and WinUID are the same. When the IDs
are different, the user cannot login.



Actual Results:  Here is what I see in /var/log/samba/WinMachine.log:

check_ntlm_password:  Authentication for user [WinUID] -> [LinUID]
FAILED with error NT_STATUS_NO_SUCH_USER
check_ntlm_password:  mapped user is: [WkGroup]\[LinUID]@[WinMachine]

That seems wrong. Shouldn't the mapped user be
[WkGroup]\[WinUID]@[WinMachine]?



Expected Results:  I have exactly the same settings on a Suse 9.1 box
running samba-3.0.4-1.34.3 and everything is working fine there.


Additional info:

I tried to look in all other reports about samba. Sorry if this is a dupe.

Comment 1 Eral Trmb 2004-12-10 23:33:44 UTC
I reverted to samba-3.0.8-0.pre1.3 and the user mapping works again.

Comment 2 Eral Trmb 2005-01-05 23:18:10 UTC
The problem is still there wih samba-3.0.10-1.fc3.
No one cares? Am I sending messages to a black hole?
This is getting frustrating.

Comment 3 Eral Trmb 2005-01-06 01:48:56 UTC
Reopened #1772 in samba bugs db:

https://bugzilla.samba.org/show_bug.cgi?id=1772

Comment 4 Eral Trmb 2005-01-31 21:51:38 UTC
Many thanks to Kaare Hviid, a tenacious Debian user, who found the
solution. The fix for security=domain is to use:
LinUID = DOMAIN\WinUID
in /etc/samba/smbusers. Warning, this is not backward compatible and
will not work for security=user


Note You need to log in before you can comment on or make changes to this bug.