summaryrefslogtreecommitdiff
path: root/docs/docbook/smbdotconf/security/algorithmicridbase.xml
blob: 3c2bf8686eb15178cd402f41f9e9fe36a220e909 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
<samba:parameter xmlns:samba="http://samba.org/common">
		<term><anchor id="ALGORITHMICRIDBASE"/>algorithmic rid base (G)</term>
		<listitem><para>This determines how Samba will use its
                algorithmic mapping from uids/gid to the RIDs needed to construct
                NT Security Identifiers.</para>

                <para>Setting this option to a larger value could be useful to sites
                transitioning from WinNT and Win2k, as existing user and 
                group rids would otherwise clash with sytem users etc. 
                </para>

                <para>All UIDs and GIDs must be able to be resolved into SIDs for  
                the correct operation of ACLs on the server.  As such the algorithmic
                mapping can't be 'turned off', but pushing it 'out of the way' should
                resolve the issues.  Users and groups can then be assigned 'low' RIDs
                in arbitary-rid supporting backends. </para>

		<para>Default: <command moreinfo="none">algorithmic rid base = 1000</command></para>

		<para>Example: <command moreinfo="none">algorithmic rid base = 100000</command></para>
		</listitem>
		</samba:parameter>