[prev in list] [next in list] [prev in thread] [next in thread] List: sssd-users Subject: =?utf-8?q?=5BSSSD-users=5D?= sssd, win server 2012, samba4 share, sid From: Stefan Fuhrmann <stefan () fuhrmann ! homedns ! org> Date: 2016-05-03 17:04:42 Message-ID: 2067034.ovEJHW5mh6 () stefan-ubu [Download RAW message or body] Hello all, Im having a win server 2012 with AD and centos 7.2 with samba4 as client. On the centos client I want to do a cifs share with active directory authentication. I configured all and "id" and "getent" are working. I raed that I have to configure permission on the samba share with windows explorer. I can do that but after closing the security tab and reopen it in win explorer only win SID are shown in security tab. Please have a look to attached screenshot. sssd.conf: [sssd] services = nss, pam config_file_version = 2 domains = samba debug_level = 9 [nss] filter_users = root filter_groups = root [pam] [domain/samba] ad_hostname = centi.samba.dance ad_server = dc.samba.dance ad_domain = samba default_shell = /bin/bash override_homedir = /home/%u ldap_schema = ad id_provider = ad access_provider = ad # on large directories, you may want to disable enumeration for performance reasons enumerate = true cache_credentials = true auth_provider = krb5 chpass_provider = krb5 ldap_sasl_mech = GSSAPI ldap_sasl_authid = centi$@SAMBA.DANCE krb5_realm = SAMBA.DANCE krb5_server = dc.samba.dance krb5_kpasswd = dc.samba.dance krb5_keytab = /etc/krb5.keytab ldap_krb5_init_creds = true ldap_referrals = false ldap_uri = ldap://dc.samba.dance ldap_search_base = dc=samba,dc=dance dyndns_update=false ldap_id_mapping=true I searched the web, books... play around with ID- mapping.... Also asking on samba mailinglist was no one who can help. Nothing helps. How to get the windows usernames in security tab? Can someone help? Tia Stefan ["win.png" (win.png)] PNG IHDR q sBITO tEXtSoftware Shutterc \ IDATxw|KOҨ!ХD*D "UT( \ t B'@H#˵mcC|?cwnfd73d JL&HHQԛ bs 0,˪T%fj͚b&0OUҘ@esś6m&Db&EQo*T,=*""<8)ؓRV>