Hi! I'm using Samba 3.0 pdc with Debian Woody, LDAP and ACL-support. ACL works great, but if I try to ADD an acl-permission via windows security-tab there is none to choose from. It shows that my domain is selected and there are some basic users (Everyone, Authenticated users, CREATOR-OWNER etc.) that can be chosen, but no users or groups of mine. Is this by design or am I missing something here? I can however type the name of the user I want to add to the textfield and it works fine, only group names don't work. -- Pirkka
Pirkka Luukkonen
2003-Nov-28 16:00 UTC
[Samba] Re: ACL Security-tab missing users and groups
Hi! Yes I did mount the partition. ACL works fine with getfacl / setfacl and other fileutils. It works with Samba too as it reads and writes acl-entries. The problems are, that while adding permissions with windows, I can't get a listing of my users and groups AND that any combination of groups (MYDOM\domuser, MYDOM\Domain Users) is rejected and therefore I am unable to add group permission. With Windows that is. With linux it is possible to add group acls, BUT it seems that the acl inherition doesn't work for groups, only users. bug? # net groupmap list Domain Users (S-1-5-21-827999984-3680983439-2218884935-513) -> domuser Domain Admins (S-1-5-21-827999984-3680983439-2218884935-512) -> domadmin Domain Computers (S-1-5-21-827999984-3680983439-2218884935-515) -> domcompu ... -- Pirkka> Hi, did you mount your partition which homes your samba share with acl ? > Did you mapped all your groups ? > Read the related chapter in the how to not all permission tabs are able to > use > ----- Original Message ----- > From: "Pirkka Luukkonen" <samba@con3.org> > To: <samba@lists.samba.org> > Sent: Friday, November 28, 2003 1:50 PM > Subject: [Samba] ACL Security-tab missing users and groups > > >> >> Hi! >> >> I'm using Samba 3.0 pdc with Debian Woody, LDAP and ACL-support. ACL works >> great, but if I try to ADD an acl-permission via windows security-tab > there >> is none to choose from. It shows that my domain is selected and there are >> some basic users (Everyone, Authenticated users, CREATOR-OWNER etc.) that >> can be chosen, but no users or groups of mine. >> >> Is this by design or am I missing something here? >> >> I can however type the name of the user I want to add to the textfield and >> it works fine, only group names don't work. >> >> -- >> Pirkka >> -- >> To unsubscribe from this list go to the following URL and read the >> instructions: http://lists.samba.org/mailman/listinfo/samba >> >