I have linux machines joined to my AD domain using winbind. I have windows pro machines joined to AD normally I would like it so that when I user writes to an ntfs removable disk That when I mount it on my linux machines it follows the permissions. Is that possible? I use ntfs-3g to mount the partition. I see there is a command ntf3-3g.usermap and wonder if that might work. Is there a command like it to get the usermap from AD? I'm curious if when I write to the disk from linux machines if it shows proper ownership on my windows machines.
oooh, I think I could write a script to do what ntf3-3g.usermap using ldap. :-) If something doesn't already exist. I think it gives the format in the ntfs-3g man page. On Fri, Nov 3, 2017 at 1:19 PM, Jeff Sadowski <jeff.sadowski at gmail.com> wrote:> I have linux machines joined to my AD domain using winbind. > I have windows pro machines joined to AD normally > I would like it so that when I user writes to an ntfs removable disk > That when I mount it on my linux machines it follows the permissions. > Is that possible? > I use ntfs-3g to mount the partition. I see there is a command > ntf3-3g.usermap and wonder if that might work. > Is there a command like it to get the usermap from AD? > I'm curious if when I write to the disk from linux machines if it > shows proper ownership on my windows machines.
just get objectsid and use this https://blogs.msdn.microsoft.com/oldnewthing/20040315-00/?p=40253 On Fri, Nov 3, 2017 at 1:32 PM, Jeff Sadowski <jeff.sadowski at gmail.com> wrote:> oooh, I think I could write a script to do what ntf3-3g.usermap using > ldap. :-) If something doesn't already exist. > I think it gives the format in the ntfs-3g man page. > > On Fri, Nov 3, 2017 at 1:19 PM, Jeff Sadowski <jeff.sadowski at gmail.com> wrote: >> I have linux machines joined to my AD domain using winbind. >> I have windows pro machines joined to AD normally >> I would like it so that when I user writes to an ntfs removable disk >> That when I mount it on my linux machines it follows the permissions. >> Is that possible? >> I use ntfs-3g to mount the partition. I see there is a command >> ntf3-3g.usermap and wonder if that might work. >> Is there a command like it to get the usermap from AD? >> I'm curious if when I write to the disk from linux machines if it >> shows proper ownership on my windows machines.