Hello,
I figured it out, in short, winbind rocks.
For some reason, I did not see the point of specifying nss_winbind in
/etc/nsswitch.conf. Now that I did that I can use the UIDs/GIDs mapped
for my system by winbindd for perms.
Using winbind this way eliminates the need to create local Unix accounts :)
Awesome. I'm not sure why I didn't realize this before ( maybe because
the other server I have set up is a dev server where all the developers
have shell accounts, never gave it much thought .. but I wanted ACLs and
the ability to store domain info so I used winbind there. This is a server
intended for windows users, no shells except for mine )
Great work!
Thanks,
Rob
----- Forwarded message from Rob Helmer <robert@namodn.com> -----
Delivered-To: samba@lists.samba.org
From: Rob Helmer <robert@namodn.com>
To: samba@lists.samba.org
User-Agent: Mutt/1.2.5i
Organization: Namodn Artists - http://www.namodn.com
X-OS-Type: Debian GNU/Linux 2.2
Subject: [Samba] hiding Unix perms
Errors-To: samba-admin@lists.samba.org
X-BeenThere: samba@lists.samba.org
X-Mailman-Version: 2.0.8
Precedence: bulk
List-Help: <mailto:samba-request@lists.samba.org?subject=help>
List-Post: <mailto:samba@lists.samba.org>
List-Subscribe: <http://lists.samba.org/mailman/listinfo/samba>,
<mailto:samba-request@lists.samba.org?subject=subscribe>
List-Id: General questions regarding Samba <samba.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/mailman/listinfo/samba>,
<mailto:samba-request@lists.samba.org?subject=unsubscribe>
List-Archive: <http://lists.samba.org/pipermail/samba/>
X-Original-Date: Wed, 24 Jul 2002 14:07:06 -0700
Date: Wed, 24 Jul 2002 14:07:06 -0700
Hello,
Sorry if I missed this in the docs, I haven't seen an option to do this..
I have a Samba server ( Linux 2.20acl kernel ) named "fileserver" set
up and
working well as a fileserver to Windows clients ( I am using winbind also ).
Samba has some awesome capabilities nowadays :) The current issues I am
facing aren't exactly showstoppers, but I know they'll be confusing if I
open it up to users as the main file server when it's like this.
I've noticed that from a Windows box, I can see permissions that match
the Unix permissions ( \\fileserver\rhelmer, \\fileserver\samba and
Everyone ).
Also, if I create a file, ( logged into the domain as rhelmer ), it uses
my Unix account ( \\fileserver\rhelmer as the owner, not \\domain\rhelmer ).
I have a script that creates a Unix account for every validated user
from the domain, is this the cause ? ( not sure if I need to do this
anymore now that I am using winbind and ACL ).
How can I :
1) not display the Unix permissions to Windows users ( they can't change
them anyway.. )
2) have files created by a domain user be owned by \\domain\user not
\\fileserver\user
Thanks,
Rob
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
----- End forwarded message -----