Users and Groups, errors?

[JasonWard]

So I installed "Users and Groups" and was surprised to find that according to "Users and Groups" I have no users, or groups, telling me "There are no users at the moment".

However, when I try to create my default user (i.e. the one I log into Zentyal with) it says "Username already exists on the system".

So... how do I make the web interface sync with the computer?  And why isn't already sync'd?  Finally, where can I find documentation on "Users and Groups" there doesn't seem to be any in the manual or the wiki.

[stuartiannaylor]

That ones your hidden admin account. Try any other.

[JasonWard]

So all these already defined groups

Code: [Select]

root:x:0:
daemon:x:1:
bin:x:2:
sys:x:3:
adm:x:4:ebox,jason
tty:x:5:
disk:x:6:
lp:x:7:
mail:x:8:
news:x:9:
uucp:x:10:
man:x:12:
proxy:x:13:
kmem:x:15:
dialout:x:20:jason
fax:x:21:
voice:x:22:
cdrom:x:24:jason
floppy:x:25:
tape:x:26:
sudo:x:27:
audio:x:29:
dip:x:30:
www-data:x:33:
backup:x:34:
operator:x:37:
list:x:38:
irc:x:39:
src:x:40:
gnats:x:41:
shadow:x:42:ebox
utmp:x:43:
video:x:44:
sasl:x:45:
plugdev:x:46:jason
staff:x:50:
games:x:60:
users:x:100:
nogroup:x:65534:
libuuid:x:101:
syslog:x:102:
netdev:x:103:
fuse:x:104:
crontab:x:105:
mlocate:x:106:
ssh:x:107:
redis:x:108:
messagebus:x:109:
haldaemon:x:110:
ntp:x:111:
ssl-cert:x:112:postgres
postgres:x:113:
ebox:x:114:
jason:x:1000:
lpadmin:x:115:jason
sambashare:x:116:jason
admin:x:117:jason
libvirtd:x:118:jason
kvm:x:119:
postfix:x:120:
postdrop:x:121:
ftp:x:122:ftp
openldap:x:123:
and users

Code: [Select]

username: root uid:0
username: daemon uid:1
username: bin uid:2
username: sys uid:3
username: sync uid:4
username: games uid:5
username: man uid:6
username: lp uid:7
username: mail uid:8
username: news uid:9
username: uucp uid:10
username: proxy uid:13
username: www-data uid:33
username: backup uid:34
username: list uid:38
username: irc uid:39
username: gnats uid:41
username: nobody uid:65534
username: libuuid uid:100
username: syslog uid:101
username: redis uid:102
username: messagebus uid:103
username: haldaemon uid:104
username: ntp uid:105
username: sshd uid:106
username: postgres uid:107
username: ebox uid:108
username: jason uid:1000
username: libvirt-qemu uid:109
username: postfix uid:110
username: ftp uid:111
username: openldap uid:112
are totally unavailable for management or use within "users and groups"?

[DWAM]

You must have an account to administer only your Zentyal server.

Then you can create other accounts which can use the services and LDAP. You will then have 2 accounts minimum : one for Zentyal Server, one for using it.

The accounts you create are for using samba shares, ftp, mail, etc... in a windows-like domain environnement with LDAP. Do not confuse with the linux system users and groups which are only used for/by the system.

Unless you tick the case "give bash to LDAP users", Zentyal/LDAP users cannot log/ssh to the server. They can only log to the domain.

[JasonWard]

So if the linux machine knows nothing of the domain, and the domain knows nothing of the Linux machine, how do permissions work for samba fileshares?

On the one occasion I have done this in the past, using Openfiler the directory permissions and file access permissions had to be set to those with the active directory controller.  I had expected the same with Zentyal and "Users and Groups".

[DWAM]

a subtle mix of linux permissions and samba acl against ldap. With Zentyal, we (admins) are not supposed to play with linux permissions. When you create an ldap user, you can set 3 types of account profiles regarding the file sharing module.