On Tue, 2005-07-12 at 10:05 +0300, Vesko wrote: > Adam Stokes wrote: > >>> > >>>Another error i come upon in a next step of the howto: > >>>--- > >>>[root at dt ~]# net groupmap add rid=512 ntgroup='Domain Admins' > >>>unixgroup='Admins' > >>>adding entry for group Domain Admins failed! > >>>--- > >>>I have an unix group 'Admins', samba and fedora-ds logs show nothing > >>>when executing this command > >> > >>When you created /etc/sambaGroups to be converted what values did you > >>use for the group? > > > > Sorry meant /tmp/sambaGroups and what is the output of ldapsearch -x -Z > > '(cn=Domain*)' > > > > thanks > > Thank you for your reply > I made changes to /tmp/sambaGroup to get rid of some console errors i > get but still cant pass to the next step of the howto. > here is more information: > --- > [root at dt /]# cat /etc/group > ... > Domain Admins:x:512: > Domain Users:x:513: > Domain Guests:x:514: > Domain Computers:x:515: > --- > [root at dt /]# cat /tmp/sambaGroups > Domain Admins:x:2512: > Domain Users:x:2513: > Domain Guests:x:2514: > Domain Computers:x:2515: > --- > converted to ldif and imported to the directory. I can see the entries > in the directory. > > --- > [root at dt /]# net groupmap add rid=512 ntgroup='Admins' unixgroup='Admins' > adding entry for group Admins failed! > --- > > -- > Fedora-directory-users mailing list > Fedora-directory-users at redhat.com > https://www.redhat.com/mailman/listinfo/fedora-directory-users There is no need for the /etc/group file to have those entries in it because Samba will map the entires from the ldap server. So remove the entries in /etc/group, import the ldif from /tmp/sambaGroups and map the appropriate entries (instead of ntgroup='Admins' use ntgroup='Domain Admins' unixgroup='Domain Admins') Remeber you are mapping from an ldap server so the entries have to exist somewhere.
