diff options
Diffstat (limited to 'docs/htmldocs/manpages/idmap_rid.8.html')
| -rw-r--r-- | docs/htmldocs/manpages/idmap_rid.8.html | 39 |
1 files changed, 32 insertions, 7 deletions
diff --git a/docs/htmldocs/manpages/idmap_rid.8.html b/docs/htmldocs/manpages/idmap_rid.8.html index 6115cc584b..13df0c99db 100644 --- a/docs/htmldocs/manpages/idmap_rid.8.html +++ b/docs/htmldocs/manpages/idmap_rid.8.html @@ -8,22 +8,47 @@ It is intended as a way to avoid accidental UID/GID overlaps between local and remotely defined IDs. </p></dd><dt><span class="term">base_rid = INTEGER</span></dt><dd><p> - Defines the base integer used to build SIDs out of an UID or a GID, - and to rebase the UID or GID to be obtained from a SID. User RIDs - by default start at 1000 (512 hexadecimal), this means a good value - for base_rid can be 1000 as the resulting ID is calculated this way: - ID = RID - BASE_RID + LOW RANGE ID. + Defines the base integer used to build SIDs out of a UID or a GID, + and to rebase the UID or GID to be obtained from a SID. + This means SIDs with a RID less than the base rid are filtered. + The default is not to restrict the allowed rids at all, + i.e. a base_rid value of 0. + A good value for the base_rid can be 1000, since user + RIDs by default start at 1000 (512 hexadecimal). </p><p> Use of this parameter is deprecated. - </p></dd></dl></div></div><div class="refsect1" lang="en"><a name="id2483348"></a><h2>EXAMPLES</h2><p>This example shows how to configure a domain with idmap_rid</p><pre class="programlisting"> + </p></dd></dl></div></div><div class="refsect1" lang="en"><a name="id2483349"></a><h2>THE MAPPING FORMULAS</h2><p> + The Unix ID for a RID is calculated this way: + </p><pre class="programlisting"> + ID = RID - BASE_RID + LOW_RANGE_ID. + </pre><p> + </p><p> + Correspondingly, the formula for calculating the RID for a + given Unix ID is this: + </p><pre class="programlisting"> + RID = ID + BASE_RID - LOW_RANGE_ID. + </pre><p> + </p></div><div class="refsect1" lang="en"><a name="id2483376"></a><h2>EXAMPLES</h2><p> + This example shows how to configure two domains with idmap_rid, + the principal domain and a trusted domain, leaving the default + id mapping scheme at tdb. The example also demonstrates the use + of the base_rid parameter for the trusted domain. + </p><pre class="programlisting"> [global] + security = domain + workgroup = MAIN + idmap backend = tdb idmap uid = 1000000-1999999 idmap gid = 1000000-1999999 + idmap config MAIN : backend = rid + idmap config MAIN : range = 10000 - 49999 + idmap config TRUSTED : backend = rid idmap config TRUSTED : range = 50000 - 99999 - </pre></div><div class="refsect1" lang="en"><a name="id2483367"></a><h2>AUTHOR</h2><p> + idmap config TRUSTED : base_rid = 1000 + </pre></div><div class="refsect1" lang="en"><a name="id2483402"></a><h2>AUTHOR</h2><p> The original Samba software and related utilities were created by Andrew Tridgell. Samba is now developed by the Samba Team as an Open Source project similar |