From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 125560 invoked by alias); 8 Mar 2016 17:00:03 -0000 Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Received: (qmail 125488 invoked by uid 89); 8 Mar 2016 17:00:01 -0000 Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: No, score=-93.9 required=5.0 tests=BAYES_50,KAM_LAZY_DOMAIN_SECURITY,RCVD_IN_PBL,RDNS_DYNAMIC,USER_IN_WHITELIST autolearn=no version=3.3.2 spammy=GID, H*R:U*cygwin, SID, Vinschen X-HELO: calimero.vinschen.de Received: from ipbcc0d020.dynamic.kabel-deutschland.de (HELO calimero.vinschen.de) (188.192.208.32) by sourceware.org (qpsmtpd/0.93/v0.84-503-g423c35a) with ESMTP; Tue, 08 Mar 2016 16:59:51 +0000 Received: by calimero.vinschen.de (Postfix, from userid 500) id 6BAD5A80600; Tue, 8 Mar 2016 17:59:49 +0100 (CET) Date: Tue, 08 Mar 2016 17:00:00 -0000 From: Corinna Vinschen To: cygwin@cygwin.com Subject: Re: RFC2307 accounts Message-ID: <20160308165949.GC27123@calimero.vinschen.de> Reply-To: cygwin@cygwin.com Mail-Followup-To: cygwin@cygwin.com References: <56DEFE0D.3010308@studelec-sa.com> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="8GpibOaaTibBMecb" Content-Disposition: inline In-Reply-To: <56DEFE0D.3010308@studelec-sa.com> User-Agent: Mutt/1.5.24 (2015-08-30) X-SW-Source: 2016-03/txt/msg00076.txt.bz2 --8GpibOaaTibBMecb Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Content-length: 1518 On Mar 8 17:30, Marc Rechte wrote: > Hello, >=20 > Trying to set RFC2307 accounts, using unix schema in /etc/nsswitch.conf. >=20 > UID/GID do not reflect what is stored in AD (using POSIX attributes), they > still follow the 0x100000 + RID scheme > (https://cygwin.com/cygwin-ug-net/ntsec.html#ntsec-mapping) >=20 > Any idea ? >=20 > Thanks >=20 > In cygwin bash: >=20 > $ uname -a > CYGWIN_NT-6.1 TOURNESOL 2.4.1(0.293/5/3) 2016-01-24 11:26 x86_64 Cygwin >=20 > $ getent passwd mrechte > mrechte:*:1050005:1049089:U-STUDELEC-SA\mrechte,S-1-5-21-497920593-232091= 9703-1315762108-1429:/home/mrechte:/bin/bash >=20 > $ cat /etc/nsswitch.conf > passwd: files db > group: files db > db_enum: cache builtin > db_home: unix > db_shell: unix > db_gecos: unix >=20 > On a Linux box attached to the domain, using RFC2307 > $ getent passwd mrechte > mrechte:*:12007:11000::/home/mrechte:/bin/bash >=20 > This is the correct values ie. 12007/11000 The result is correct, too. The uid/gid mapping is the mapping from Windows SID to Cygwin uid/gid, so the uid/gid values reflect the normal values as computed from the SIDs. The RFC2307 uid/gid mapping has only one purpose: Used on NFS or Samba shares, Cygwin knows that uid 12007 is you. So during file handling Cygwin internally maps uid 12007 on the remote FS to the Cygwin uid 1050005 and vice versa. HTH, Corinna --=20 Corinna Vinschen Please, send mails regarding Cygwin to Cygwin Maintainer cygwin AT cygwin DOT com Red Hat --8GpibOaaTibBMecb Content-Type: application/pgp-signature; name="signature.asc" Content-length: 819 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJW3wUFAAoJEPU2Bp2uRE+gSK4QAJIb+CsO1ZyVThlKq9NnLjdH 70IwBZ67liufyh3azAx6jCVjpZN5pw8eaJLxt3UXH36Zj7pwROg2d7iOaWsbVelx axyg8K0UehqXDLUzOivR9uSYz2vAdMV1GVi0uC/pDMjRTFYQNdB/H7KGWJRg+djz q7N8N+IFJsH63LjfleLNfQ4Fuq3ZzlAr4/GHaFu54Q+mFNKKLR/opm439uVRYKyC 7nPSG7lrAWshu4nsVMxGvXyxGKgpcZrKu/YK0E+0J4Brd7kO0A5WPtGMVW9jNzz+ HgXBirrs2mdzgCKodNwjidx/arTFTvAq7aw/SDnv2f6JXmEltZhobvMYaCJqOwiK vdbak5tPjNH7YN4ZICFXddPh+MnrTjQ0wd95IXVfdTYO0Jwaq1TgrNXGqD3mJg1w 61Kuz/EPoJdDb8L60io8VqJBN/KHnYZc5y1YB4FYqV6/5+ducqE8nuFIq6a9siof ikZdGEzk6u2pD+Q5pUOcB8sJiShu6nsw2yqQhyHCWzpuq3XYY+sDJaB5S+F5lK1n fpqAY8aJ+QbYUXrnazLPBH53SZDK7K3ORkOdp7w1afsL7JQofQOBF2lBNESBG7k7 sjBnmJE7YP6qd+cnzfdcDHfMacN0TLFd7nv6twjZf3n6wFYBNShMYJaqN0KxhSVP LvfD1TFB5sr+bDcQtoYI =Bv4u -----END PGP SIGNATURE----- --8GpibOaaTibBMecb--