Rob Campbell
2022-Mar-07 19:21 UTC
[Samba] Unable to write to a share that I should have access to
Following https://wiki.samba.org/index.php/Setting_up_a_Share_Using_POSIX_ACLs#Setting_Standard_UNIX_ACLs # chmod 2770 /srv/samba/Demo/ # chown root:"Domain Users" /srv/samba/Demo/ When I try this, I get an error message $ chown testuser:"Media Users" TV_Shows/ chown: invalid user: ?testuser:Media Users? samba-tool user show testuser dn: CN=Test User,CN=Users,DC=home,DC=test-server,DC=lan ... memberOf: CN=Backup,CN=Users,DC=home,DC=test-server,DC=lan memberOf: CN=Photo Users,CN=Users,DC=home,DC=test-server,DC=lan memberOf: CN=Multimedia Users,CN=Users,DC=home,DC=test-server,DC=lan memberOf: CN=Media Users,CN=Users,DC=home,DC=test-server,DC=lan memberOf: CN=Video Users,CN=Users,DC=home,DC=test-server,DC=lan memberOf: CN=Music Users,CN=Users,DC=home,DC=test-server,DC=lan memberOf: CN=Movie Users,CN=Users,DC=home,DC=test-server,DC=lan ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ In all things, Be Intentional. On Mon, Mar 7, 2022 at 12:00 PM Rob Campbell <robcampbell08105 at gmail.com> wrote:> Selinux is definitely turned off and I have no idea what apparmor is but > it is not installed. > > I've tried adding the samba group gid to the directory that is being > shared but that also did not help. Still only read only access. > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ > In all things, Be Intentional. > > > On Mon, Mar 7, 2022 at 11:27 AM Rowland Penny via samba < > samba at lists.samba.org> wrote: > >> On Mon, 2022-03-07 at 09:04 -0500, Rob Campbell via samba wrote: >> > Correct. Creating local users on each device is not an option. >> > >> > But even my internal drives aren't writable as a share. >> >> Is Selinux or Apparmor in use ? >> >> Rowland >> >> >> >> -- >> To unsubscribe from this list go to the following URL and read the >> instructions: https://lists.samba.org/mailman/options/samba >> >
Rowland Penny
2022-Mar-07 19:29 UTC
[Samba] Unable to write to a share that I should have access to
On Mon, 2022-03-07 at 14:21 -0500, Rob Campbell via samba wrote:> Following > https://wiki.samba.org/index.php/Setting_up_a_Share_Using_POSIX_ACLs#Setting_Standard_UNIX_ACLs > > # chmod 2770 /srv/samba/Demo/ > # chown root:"Domain Users" /srv/samba/Demo/ > > When I try this, I get an error message > $ chown testuser:"Media Users" TV_Shows/ > chown: invalid user: ?testuser:Media Users? > > samba-tool user show testuser > dn: CN=Test User,CN=Users,DC=home,DC=test-server,DC=lanYes, but does <getent passwd testuser> and <getent group 'Media Users'> produce output ? Rowland
Patrick Goetz
2022-Mar-08 02:40 UTC
[Samba] Unable to write to a share that I should have access to
On 3/7/22 13:21, Rob Campbell via samba wrote:> Following > https://nam12.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwiki.samba.org%2Findex.php%2FSetting_up_a_Share_Using_POSIX_ACLs%23Setting_Standard_UNIX_ACLs&data=04%7C01%7C%7C669af0e754c843d7516d08da006fc9d4%7C31d7e2a5bdd8414e9e97bea998ebdfe1%7C0%7C0%7C637822777375468687%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=hj4tbwZ8u%2BffgWXEwGyykmzxbHT%2B2Z6fxzc1B6MsUsg%3D&reserved=0 > > # chmod 2770 /srv/samba/Demo/ > # chown root:"Domain Users" /srv/samba/Demo/ > > When I try this, I get an error message > $ chown testuser:"Media Users" TV_Shows/ > chown: invalid user: ?testuser:Media Users? >First of all, you can't use chown as an ordinary user. Only root can do this. Second, I'm pretty sure your syntax is wrong? Try this (as root): # chown testuser:"Media Users" TV_Shows> samba-tool user show testuser > dn: CN=Test User,CN=Users,DC=home,DC=test-server,DC=lan > ... > memberOf: CN=Backup,CN=Users,DC=home,DC=test-server,DC=lan > memberOf: CN=Photo Users,CN=Users,DC=home,DC=test-server,DC=lan > memberOf: CN=Multimedia Users,CN=Users,DC=home,DC=test-server,DC=lan > memberOf: CN=Media Users,CN=Users,DC=home,DC=test-server,DC=lan > memberOf: CN=Video Users,CN=Users,DC=home,DC=test-server,DC=lan > memberOf: CN=Music Users,CN=Users,DC=home,DC=test-server,DC=lan > memberOf: CN=Movie Users,CN=Users,DC=home,DC=test-server,DC=lan > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ > In all things, Be Intentional. > > > On Mon, Mar 7, 2022 at 12:00 PM Rob Campbell <robcampbell08105 at gmail.com> > wrote: > >> Selinux is definitely turned off and I have no idea what apparmor is but >> it is not installed. >> >> I've tried adding the samba group gid to the directory that is being >> shared but that also did not help. Still only read only access. >> >> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ >> In all things, Be Intentional. >> >> >> On Mon, Mar 7, 2022 at 11:27 AM Rowland Penny via samba < >> samba at lists.samba.org> wrote: >> >>> On Mon, 2022-03-07 at 09:04 -0500, Rob Campbell via samba wrote: >>>> Correct. Creating local users on each device is not an option. >>>> >>>> But even my internal drives aren't writable as a share. >>> >>> Is Selinux or Apparmor in use ? >>> >>> Rowland >>> >>> >>> >>> -- >>> To unsubscribe from this list go to the following URL and read the >>> instructions: https://nam12.safelinks.protection.outlook.com/?url=https%3A%2F%2Flists.samba.org%2Fmailman%2Foptions%2Fsamba&data=04%7C01%7C%7C669af0e754c843d7516d08da006fc9d4%7C31d7e2a5bdd8414e9e97bea998ebdfe1%7C0%7C0%7C637822777375468687%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=4Q2PrVVh%2FvlC2mqJZW6LkwrYPMwmK5NO%2BnFkWsvkZcI%3D&reserved=0 >>> >>