NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Change Samba idmap with AD
Hi I have a nas that was installed long ago with a firmware pre 6.5 and then upgraded to the last, with this nas the idmap with ad is different that one started with a recent firmware. It's poss...
Hi,
SOLVED !!!
here the step
- Switch from AD to Local users.
- NEW - Disabled samba in each share
- Wipe the permissions under File access tab / reset of each shares settings section.
- Edit /etc/samba/smb.conf to replace tdb by: rid
- Execute: net cache flush
- NEW - Reboot
- Join AD with "trusted domain" unchecked.
After these steps now idmap use rid.
Thank for all suggestions
cs_giuseppe wrote:
- Check smb.conf that it's using rid instead of tdb. - NO, still idmap config * : backend = tdb
I wish this would behave differently...
Try to edit smb.conf to replace tdb by: rid
Then: net cache flush
Then start the steps again. If you get to rid, the mapping table should be calculated consistently across both devices.
Hi
tried it but no change, still tdb
Thanks
Please confirm if these are the steps you followed:
- Switch from AD to Local users.
- Wipe the permissions under File access tab / reset of each shares settings section.
- Edit /etc/samba/smb.conf to replace tdb by: rid
- Execute: net cache flush
- Join AD with "trusted domain" unchecked.
- Check smb.conf that it's using rid instead of tdb.
- If so, reapply the permissions: https://kb.netgear.com/7066/ReadyNAS-OS-6-Setting-Active-Directory-folder-permissions
Hi,
I'm setting a test enviroment with a virtualbox nas for testing so I don not touch many the main production nas.
Keep you updated
Thanks for all support
Hi
I made all on the test nas:
- Switch from AD to Local users.
- Wipe the permissions under File access tab / reset of each shares settings section.
- Edit /etc/samba/smb.conf to replace tdb by: rid
- Execute: net cache flush
- Join AD with "trusted domain" unchecked.
but nothing, still tdb
I founf when the problem arise, with fw 6.5.0 there are problem with ad auth and I check 'trusted domian' this set the tdb and now even is uncheced no rid.
Before 6.5.0, it used tdb.
Since 6.5.0, if trusted domain is unchecked, it uses rid.
Since 6.5.0, if trusted domain is checked, it uses tdb.
Once it starts using tdb, the GUI doesn't allow you to switch back to rid.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
