Using SSH with Active Directory Restrictions

[finsfree]

I am using a Windows Active Directory to authenticate users to SMB shares. I'm using FreeNAS 11.1.
Everything is working just fine. My issue is with SSH.

When I SSH in I'm not able to see all the data in the datasets. The reason is I don't have the "everyone" group as a group that can access curtain shares. How can I add a Domain User to a local user in FreeNAS 11.1? I need to create a user that can see everything and not be restricted by permissions using SSH.

Basically, I login with SSH using a local users account, in FreeNAS, and not a domain user that can access all the data.

 

[dlavigne]

Were you able to find a solution for this?

 

[anodos]

@finsfree

I believe you can add an AD group to a local group in the following manner:
1) create local group
2) get SID value for local group. wbinfo --gid-to-sid=<gid of group>
3) get SID value for AD group. wbinfo --gid-to-sid=<gid of group>
4) run the following command. net groupmap addmem <sid of local group> <sid of domain group>

Do note that after you do this, you should take special care to back up /var/db/samba4/group_mapping.tdb