Hi all, I have several servers in a facility running Samba3 authenticating users from a LDAP server with no issues. But now, I'm testing a new file server with Samba4 and I'm running in a problem which seems to be really easy to solve but I couldn't. I'm using the smb.conf file from the other samba3 servers, so while I don't set the owner of the folder (with chown) with the user I'm authenticating, I can't write to this folder. For example, I have the following share config: [Share] comment = Share Test path = /Storage/Test browseable = yes writable = yes create mask = 0664 directory mask = 2775 valid users = @testgroup If I authenticate with a user contained in the group testgroup, I can't mount the volume. If I change the "valid users" to "valid users = testuser @testgroup", I mount the volume with the user testuser but I can't write if this user is not the owner of the folder. I figured out that in Samba4 I don't need to have the "valid users" entry. So, if I delete this line, I can mount but I can't write as well. It's like Samba4 can't recognize/read the groups from my ldap database, or something like that. I appreciate if someone could help me with that. Thanks in advance, Danilo Sent from my iPad
On Sat, 2014-05-31 at 20:30 -0300, Danilo Mussolini wrote:> Hi all, > > I have several servers in a facility running Samba3 authenticating > users from a LDAP server with no issues. > But now, I'm testing a new file server with Samba4 and I'm running in > a problem which seems to be really easy to solve but I couldn't. > > I'm using the smb.conf file from the other samba3 servers, so while I > don't set the owner of the folder (with chown) with the user I'm > authenticating, I can't write to this folder. > > For example, I have the following share config: > > [Share] > comment = Share Test > path = /Storage/Test > browseable = yes > writable = yes > create mask = 0664 > directory mask = 2775 > valid users = @testgroupHi remove all the old stuff and use simply: [Share] path = /Storage/share read only = no Now set the acls: https://wiki.samba.org/index.php/Setup_and_configure_file_shares HTH Steve
Hello Danillo, Am 01.06.2014 01:30, schrieb Danilo Mussolini:> I have several servers in a facility running Samba3 authenticating > users from a LDAP server with no issues. > But now, I'm testing a new file server with Samba4 and I'm running in > a problem which seems to be really easy to solve but I couldn't.Samba 4 as AD DC, NT4-style PDC or Member Server (regardless if AD or NT4 domain)? If not AD DC, then are xattr enabled globally (https://wiki.samba.org/index.php/Setup_and_configure_file_shares#ACL_support_on_member_server)? Depending on what/how you have setup, the answer may differ. Regards, Marc
Possibly Parallel Threads
- winbind on DC : how use gidNumber instead of primaryGroupID as user's primary group
- winbind on DC : how use gidNumber instead of primaryGroupID as user's primary group
- winbind on DC : how use gidNumber instead of primaryGroupID as user's primary group
- centos 6.5 sernet-samba 4.1.6 member server winbind idmap fail
- Samba Permissions