Bug 9840 - "idmap_ldb:use rfc2307" is undocumented
Summary: "idmap_ldb:use rfc2307" is undocumented
Status: NEW
Alias: None
Product: Samba 4.0
Classification: Unclassified
Component: AD: LDB/DSDB/SAMDB (show other bugs)
Version: 4.0.5
Hardware: All All
: P5 normal (vote)
Target Milestone: ---
Assignee: Andrew Bartlett
QA Contact: Samba QA Contact
Depends on:
Reported: 2013-04-30 12:28 UTC by Björn Jacke
Modified: 2013-04-30 16:01 UTC (History)
0 users

See Also:


Note You need to log in before you can comment on or make changes to this bug.
Description Björn Jacke 2013-04-30 12:28:04 UTC

I have a group testgroup in AD that does not have a gidNumber attribute yet.
getent group on DC1 and DC2 show gid 3000000 for testgroup.

Then I add gidNumber attribute with value 10000 via the Unix properties via w2k8r2 remote admin tools.

On the connected DC (DC1) nss winbind immerdiately shows the new gid 10000 for testgroup.

On the second DC, replication is arriving immediately, so the new gid is in the sam.tdb but nss winbind keeps showing gid 3000000 for testgroup. The push of the updated nss information should be done right after such a thing changed - on all DCs not only on the DC that the remote admin tool was connected to.
Comment 1 Björn Jacke 2013-04-30 16:01:33 UTC
ah, i think the second DC didn't have idmap_ldb:use rfc2307 enabled, only the first one. This parameter needs some documentation.