permissions for each entry. It is also possible to delete an entry.
BUT: I cannot add an entry. If I add a user to the list and submit the
changes, the added entry disappears again and I only see the entries I
had before.
In the logs I found the following lines:
[2002/09/11 11:14:03, 0] smbd/posix_acls.c:create_canon_ace_lists(823)
create_canon_ace_lists: unable to map SID
S-1-5-21-730796786-1604346809-928725530-1230 to uid or gid.
So I tried to investigate a bit further with rpcclient. The NT4 PDC
gave me:
odenbach@edjo[~]>>rpcclient -U odenbach -W HNIRB -c 'lookupsids
S-1-5-21-730796786-1604346809-928725530-1230' moritz
Password:
cmd = lookupsids S-1-5-21-730796786-1604346809-928725530-1230
S-1-5-21-730796786-1604346809-928725530-1230 HNIRB\axel (1)
which is correct (HNIRB ist the domain, axel the added user).
But the samba server tells me this:
odenbach@edjo[~]>>rpcclient -U odenbach -W HNIRB -c 'lookupsids
S-1-5-21-730796786-1604346809-928725530-1230' edjo
Password:
cmd = lookupsids S-1-5-21-730796786-1604346809-928725530-1230
S-1-5-21-730796786-1604346809-928725530-1230 EDJO\unix_user.115 (1)
What am I doing wrong? Or what does Samba do wrong?
Details:
Linux 2.4.18
XFS 1.1
Samba 2.2.5 with Jerry's patches
smb.conf:
[global]
workgroup = HNIRB
security = domain
encrypt passwords = yes
password server = moritz, pinky
wins server = 131.234.166.19
security mask = 0777
force security mode = 000
directory security mask = 0777
force directory security mode = 100
inherit permissions = yes
[acltest]
path = /home/ACLTEST
writeable = yes
By the way: Has anyone got a similar environent up and running? What is
different?
Thanks,
Christopher
