On Thu, Feb 23, 2017 at 03:53:56PM -0800, Omen Wild wrote:
eQuoting Sumit Bose <sbose(a)redhat.com> on Thu, Feb 23 09:34:
>
> Yes, Samba debug logs would be useful. One of the more recent issues
> which might not be fixed in the SSSD ubuntu package you use is
>
https://fedorahosted.org/sssd/ticket/3028. Do you have a chance to test
> with SSSD 1.14.x?
I compiled the 1.14.2-2.1 source (which was temporarily in Zesty), but
there was no change in behavior. I double checked, and the patch listed
in the bug is applied.
The Samba logs (log level = 999) are available from:
https://descolada.ucdavis.edu/d4dfd28c-fa22-11e6-9678-3417ebb1df52/
I broke the logs into 3 parts:
The login from a Windows 2016 server: 1-169.237.42.115.login.log
Loading the Windows Security dialog box: 2-169.237.42.115.acl-check.log
Trying to set the ACL: 3-169.237.42.115.acl-set.log
Thank you for the logs. There is an issue in the logs related to mapping
the root user. Are you trying to modify ACL for the root user or for
some other user?
If it is about the root user then this behaviour is kind of expected
because SSSD does not handle the root user when it comes to nss and PAM
and this is inherited to the SID mapping code as well.
bye,
Sumit
Thanks!
--
Omen Wild
Systems Administrator
Metro Cluster
_______________________________________________
sssd-users mailing list -- sssd-users(a)lists.fedorahosted.org
To unsubscribe send an email to sssd-users-leave(a)lists.fedorahosted.org