| delorie.com/archives/browse.cgi | search |
| X-Recipient: | archive-cygwin AT delorie DOT com |
| DomainKey-Signature: | a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id |
| :list-unsubscribe:list-subscribe:list-archive:list-post | |
| :list-help:sender:message-id:date:from:mime-version:to:subject | |
| :references:in-reply-to:content-type:content-transfer-encoding; | |
| q=dns; s=default; b=sjw+lq2fkyUFifFTlEloUFERqSP0jkfbq8GIlrI8So6 | |
| EACvhZ6IO+qJUHXHczpuzywnJBLCcmNI24j/DTlSYomtfjKArE9rBh4AUhVR8YXh | |
| cA5z1pqpj1cXyawWEq48otlDOJR36pKT4KflYwQWeL4BdONdt4qDAwuK0gN0NZew | |
| = | |
| DKIM-Signature: | v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id |
| :list-unsubscribe:list-subscribe:list-archive:list-post | |
| :list-help:sender:message-id:date:from:mime-version:to:subject | |
| :references:in-reply-to:content-type:content-transfer-encoding; | |
| s=default; bh=TokNZoiBS2+LbQnAQmvYC1Q0hp0=; b=WWD7ykyeTC2otXH/G | |
| uw5MxwyYV2j8MKBU3GGwmMQzFvbtpmb1aIdKKjcAz0X5lumrcXCuhKe7VuqlMIXI | |
| F1fSfXYf46nY2U0TFUuXBThBqw7qG4ynB8BUgQDm422JEuhx5U0PynwargstHcY/ | |
| 97hVszF2/y9qDsfdTEy9vmGOE8= | |
| Mailing-List: | contact cygwin-help AT cygwin DOT com; run by ezmlm |
| List-Id: | <cygwin.cygwin.com> |
| List-Subscribe: | <mailto:cygwin-subscribe AT cygwin DOT com> |
| List-Archive: | <http://sourceware.org/ml/cygwin/> |
| List-Post: | <mailto:cygwin AT cygwin DOT com> |
| List-Help: | <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs> |
| Sender: | cygwin-owner AT cygwin DOT com |
| Mail-Followup-To: | cygwin AT cygwin DOT com |
| Delivered-To: | mailing list cygwin AT cygwin DOT com |
| Authentication-Results: | sourceware.org; auth=none |
| X-Virus-Found: | No |
| X-Spam-SWARE-Status: | No, score=-2.7 required=5.0 tests=AWL,BAYES_00,RCVD_IN_DNSWL_LOW,T_RP_MATCHES_RCVD autolearn=ham version=3.3.2 |
| X-HELO: | mail2.intersystems.com |
| X-InterSystems: | Sent from InterSystems |
| X-InterSystems: | Sent from InterSystems |
| Message-ID: | <54EDFD84.2030605@intersystems.com> |
| Date: | Wed, 25 Feb 2015 11:51:16 -0500 |
| From: | Len Giambrone <Leonard DOT Giambrone AT intersystems DOT com> |
| User-Agent: | Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.2.0 |
| MIME-Version: | 1.0 |
| To: | <cygwin AT cygwin DOT com> |
| Subject: | Re: gid doesn't display correctly on SAMBA share using AD |
| References: | <54EDF1DB DOT 20708 AT intersystems DOT com> <20150225161849 DOT GG437 AT calimero DOT vinschen DOT de> |
| In-Reply-To: | <20150225161849.GG437@calimero.vinschen.de> |
| X-IsSubscribed: | yes |
On 02/25/2015 11:18 AM, Corinna Vinschen wrote: > On Feb 25 11:01, Len Giambrone wrote: >> Using the latest cygwin: >> >> $ cygcheck -c cygwin >> Cygwin Package Information >> Package Version Status >> cygwin 1.7.34-6 OK >> >> I've asked my admin to update the uidNumber and gidNumber in AD. He has >> done so: >> >> DistinguishedName : >> CN=build,OU=GroupAccounts,OU=Users,OU=Cambridge,DC=iscinternal,DC=com >> >> Enabled : True >> >> gidNumber : 999 >> >> GivenName : build >> >> Name : build >> >> ObjectClass : user >> >> ObjectGUID : 0901b540-b044-437f-a167-53e1453eab94 >> >> SamAccountName : build >> >> SID : S-1-5-21-112145844-1872675854-1690816760-17189 >> >> Surname : >> >> uidNumber : 56191 >> >> UserPrincipalName : build AT iscinternal DOT com >> >> >> The username displays correctly, but the group name does not: >> >> $ ls -la foo >> -rw-rw-r-- 1 build Unix_Group+999 0 Feb 25 10:52 foo >> >> And this is confirmed by running getent: >> >> $ getent passwd build >> build:*:1065765:1049089:U-ISCINTERNAL\build,S-1-5-21-112145844-1872675854-1690816760-17189:/home/build:/bin/bash >> >> $ getent passwd group >> >> I've read >> https://cygwin.com/cygwin-ug-net/ntsec.html#ntsec-mapping-nsswitch-gecos >> 'til I'm blue in the face, and I think this should work. >> What am I missing? How can I debug? > If your admin changed your user account to have a gidNumber 999 only, > then that won't help, Consider: Cygwin tries to find a group with > gidNumber set to 999. How is it supposed to evaluate the right > gidNumber value from some arbitrary user account? > > What Cygwin needs to get the right connection between a Windows group > and a gidNumber value is that the *group* entry in AD itself has the > gidNumber set to the right value. > > I don't know if that's really the problem in your case, but that seems > the most likely. > > Please report back. I'm excited that I'm not the only one interested > in getting this connection between unix and windows ids working :) > It worked. :) Now I just have to persuade my admin to populate uidNumber and gidNumber for all our current and new users... > Corinna > -- -Len -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
| webmaster | delorie software privacy |
| Copyright © 2019 by DJ Delorie | Updated Jul 2019 |