summaryrefslogtreecommitdiff
path: root/docs/smbdotconf/security/algorithmicridbase.xml
blob: f44f53bb6947d1ef1a72b4125eb2a5a1263856d2 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
<samba:parameter name="algorithmic rid base"
                 context="G"
                 advanced="1" developer="1"
				 type="integer"
		 xmlns:samba="http://samba.org/common">
<description>
    <para>This determines how Samba will use its
    algorithmic mapping from uids/gid to the RIDs needed to construct
    NT Security Identifiers.
    </para>

    <para>Setting this option to a larger value could be useful to sites
    transitioning from WinNT and Win2k, as existing user and 
    group rids would otherwise clash with sytem users etc. 
    </para>

    <para>All UIDs and GIDs must be able to be resolved into SIDs for  
    the correct operation of ACLs on the server.  As such the algorithmic
    mapping can't be 'turned off', but pushing it 'out of the way' should
    resolve the issues.  Users and groups can then be assigned 'low' RIDs
    in arbitary-rid supporting backends.
    </para>
</description>

<value type="default">1000</value>
<value type="example">100000</value>
</samba:parameter>