Amahi Forums

I've set my hda up as a domain controller and am trying to log on from a Windows 7 Ultimate machine. I can log on OK but always get the above message.
Also Windows won't let me do anything requiring elevation as none of my passwords seem to work.
I'm guessing I haven't set up the user account correctly - any help would be appreciated.

Have you checked the wiki for PDC? This is not a widely used function of Amahi, so we don't here about problems often.

http://wiki.amahi.org/index.php/PDC

I know there was some info in the forums as well that might be helpful.

Yes I followed those very instruction to set it up.
Edit : Incidentally this does not happen if I log on using "root", but according to the instructions, you only need to do that once.

I've set my hda up as a domain controller and am trying to log on from a Windows 7 Ultimate machine. I can log on OK but always get the above message.
Also Windows won't let me do anything requiring elevation as none of my passwords seem to work.
I'm guessing I haven't set up the user account correctly - any help would be appreciated.

I don't have WIn7 here to test,,,,

Your first login, there is no profile. On logoff it SHOULD write the profile to the server for future use. I will have to look later for the directory under /var/hda where the profiles are stored.

Elevation is a problem. I have not figured this out. I have gone into local users control on my boxes to give permissions to domain\user. I need to work on the Samba list what is needed. You might want to join the Samba mailing list and help me work through this.

There is a folder in /var/hda/domain-settings/profiles called "username".V2 - but it's empty.

There is a folder in /var/hda/domain-settings/profiles called "username".V2 - but it's empty.

Turn off the client.
Delete the folder.
Restart the client and log in.

Elevation is a problem. I have not figured this out. I have gone into local users control on my boxes to give permissions to domain\user. I need to work on the Samba list what is needed. You might want to join the Samba mailing list and help me work through this.

I think I figured this out, but it took a lot of reading through the Samba HOWTO Chapter 12: Group Mapping

Basically, you need to create unix user groups (I have Sysadmin and users) and then map them to the Samba "Domain Admins" and "Domain Users" groups respectively using this shell command: and for users: UAC elevation should work if you enter a user that is in the "Domain Admins" group. I think it worked immediately, without restarting the Windows 7 client or even logging out. If your prefer your ordinary users to be set as Administrators on Windows 7, you can add the unix users group to the "Domain Admins" like this: You can verify any group mappings like this: I'm not sure if the Samba group mappings automatically update if you add a unix user or move an ordinary user into the Sysadmin group. I haven't tested it yet.

By the way, if any PDC-related people are reading this thread, I found nothing on the forums or wiki to help me with this. It seems to be a basic standard issue that should be done automatically in a script; ie users with Admin rights in the Amahi control panel should be automatically added to the "Domain Admins" group, as this seems to be the standard behavior for Samba. I don't know how to do this so I'd appreciate the help.

I am having the same issue, did you have and resolution for this ?

Thanks in advance

i resolved this by using command as above on its own . . .

net groupmap add ntgroup="Domain Admins" unixgroup=users rid=512 type=d

This fixed the elevation issue where no matter what username i used including root i could not even enable windows update.