man file says delete user script (G) This is the full pathname to a script that will be run by smbd(8) when managing users with remote RPC (NT) tools. This script is called when a remote client removes a user from the server, normally using 'User Manager for Domains' or rpcclient. This script should delete the given UNIX username. Default: delete user script = <empty string> Example: delete user script = /usr/local/samba/bin/del_user %u this is not working with suse 8.2 with delete user script = /usr/sbin/userdel %u invoked by usrmgr
in the log there is a message : this is not implemented yet
Created attachment 57 [details] Log of a failed user account deletion using the NT4 domain user manager. The above level 5 log is against CVS code of July 26. The error message in DomUserMgr is: Incorrect Function.
Additional test notes: Adding of Global groups does not work - it did previously Deleting of Global groups does not work - it did previously Deletion of multiple users from Global group membership fails with access denied. Addition of multiple users to Global groups reports failure, but actually works. Execution of: net groupmap add ntgroup="Funkies" unixgroup=nobody rid=3333 works, but on examining this under DomUsrMgr has a default random user member that can not be removed. Viewing of the last group in the groups list fails with the error message: "Not enough storage is available to process this command." Copying of a user or group in DomUsrMgr fails with an error message that the connection to the domain was lost. On restarting the DomUsrMgr the copy was successful.
Created attachment 58 [details] smb.conf file with which failures were found.
I too get this message in the log files using samba-3.0beta3 on FreeBSD-4.8 STABLE rpc_server/srv_samr_nt.c:_samr_unknown_2d(4278) _samr_unknown_2d: Not yet implemented. Though, deleting of groups works, -> Terpstra, from your smb.conf you have the wrong delete group script, that add's a group not deletes it, maybe that's the cause for not being able to delete gloable groups ? Also to be able to do this I had to adjust all NT Groups with net groupmap modifiy
this is my example pdc smb.conf (older posting) with usrmgr.exe add user work add group work delete group work add user to group work delete user from group work # Samba config file created using SWAT # from 10.10.30.101 (10.10.30.101) # Date: 2003/06/22 23:08:41 # Global parameters [global] netbios name = linux large readwrite = yes dos charset = ISO8859-15 unix charset = CP850 display charset = CP850 workgroup = LINUX interfaces = lo, eth2 bind interfaces only = Yes server schannel = Yes passdb backend = smbpasswd:/etc/samba/smbpasswd, guest pam password change = Yes passwd program = /usr/bin/passwd %u passwd chat = *password* %n\n *password* %n\n *changed* username map = /etc/samba/smbusers unix password sync = Yes log level = 2 syslog = 0 log file = /var/log/samba/%m name resolve order = wins bcast hosts time server = Yes keepalive = 255 socket options = TCP_NODELAY SO_KEEPALIVE SO_SNDBUF=8192 SO_RCVBUF=8192 load printers = No printcap name = cups add user script = /usr/sbin/useradd -m %u ###############################################################not #working #delete user script = /usr/sbin/userdel -r %u ############################################################### add group script = /usr/sbin/groupadd -r %g delete group script = /usr/sbin/groupdel %g add user to group script = /usr/bin/gpasswd -a %u %g delete user from group script = /usr/bin/gpasswd -d %u %g set primary group script = /usr/sbin/usermod -g '%g' '%u' add machine script = /usr/sbin/useradd -g machines -c Machine -d /dev/null -s /bin/false %u shutdown script = /sbin/shutdown abort shutdown script = /sbin/shutdown -c logon script = login.bat logon path = \\linux\profiles\%u logon drive = Z: logon home = \\linux\%u domain logons = Yes os level = 255 preferred master = Yes domain master = Yes wins proxy = Yes wins support = Yes ldap ssl = no add share command = /usr/share/doc/packages/samba3/examples/misc/modify_samba_config.pl change share command = /usr/share/doc/packages/samba3/examples/misc/modify_samba_config.pl delete share command = /usr/share/doc/packages/samba3/examples/misc/modify_samba_config.pl utmp = Yes host msdfs = Yes idmap uid = 15000-20000 idmap gid = 15000-20000 admin users = root hosts allow = 127., 10.10.30. use sendfile = Yes veto files = /*.eml/*.nws/riched20.dll/*.{*}/ [homes] comment = Home Directories read only = No create mask = 0640 directory mask = 0750 browseable = No nt acl support = no blocking locks = No csc policy = disable locking = No oplocks = No level2 oplocks = No posix locking = No strict locking = No share modes = No [netlogon] comment = Netlogon Share path = /var/lib/samba/netlogon write list = root guest ok = Yes nt acl support = No browseable = No blocking locks = No csc policy = disable locking = No oplocks = No level2 oplocks = No posix locking = No strict locking = No share modes = No [profiles] comment = Roaming Profile Share path = /var/lib/samba/profiles read only = No create mask = 0600 directory mask = 0700 nt acl support = no blocking locks = No csc policy = disable locking = No oplocks = No level2 oplocks = No posix locking = No strict locking = No share modes = No
I tested now samba 3 rc1, user delete parameter invoked by usrmgr, is still not working i wonder anyone has worked on this bug
Bugs are marked as fixed as we get to them. When this one is done, you shoudl receive an email notification about it. Any change4s along the way will also be logged here. I've added this on the list of things to be fixed before rc2.
Should be fixed in CVS. Implemented missing SAMR_REMOVE_USER_FOREIGN_DOMAIN (samr 0x2d) call.
delete user works now with latest cvs 26.0.8.03 but when deletion is finished usrmgr pops up message user cannot be found but inreal the user was deleted in the linux system as syslog shows perhaps only a failure of beauty, but it would be nice to have this fixed
not going to be fixed for 3.0.0 I'm afraid. we'll come back to it.
the user moni existed before in the system was deleted but not refreshed with smbpasswd, this problem is not related to the bug. i noticed that to late please ignore entries about this user. i can delete users with this setup, create groups, add members to groups, delete them from groups, and delete groups. Adding users fails, this works very nice with the same smb.conf on samba version 3
Jianliang Lu pointed out that I goofed the RemoveUserForeignDomain(). Looks like it should be RemoveSIDForeignDomain(). I'll fix this up tonight. I'm going to cross my fingers and hope that fixing that one RPC will solve bug 822 as well.
Created attachment 292 [details] RemoveSidForeignDomain try this patch. It compiles, but I'll spend more time testing it tomorrow. Also might apply to bug 822.
I'm checking in a slightly modified version of the RemoveSidForeignDomain() function that works for me. This should be fixed now.
originally reported against one of the 3.0.0rc[1-4] releases. Cleaning up non-production versions.
sorry for the same, cleaning up the database to prevent unecessary reopens of bugs.
database cleanup