My File Server is a Unix Domain Member. And yes i ve done all this settings. First i got this Error: Enter SAMDOM\administrator's password: Could not connect to server 127.0.0.1 The username or password was not correct. Connection failed: NT_STATUS_LOGON_FAILURE But the troubleshooting guide (https://wiki.samba.org/index.php/Samba_Member_Server_Troubleshooting) helped me to fix this problem. But im notable to set ACL with the administrator account. Am 26.01.2018 um 13:14 schrieb Rowland Penny via samba:> Is this on a DC or a Unix domain member ? > > If it is a Unix domain member, do you have a line similar to this in > smb.conf: > > username map = /etc/samba/user.map > > and does '/etc/samba/user.map' contain something like this: > > !root = SAMDOM\Administrator SAMDOM\administrator > > Where 'SAMDOM' is replaced by your uppercase WORKGROUP name.
On Fri, 26 Jan 2018 13:25:58 +0100 Micha Ballmann via samba <samba at lists.samba.org> wrote:> My File Server is a Unix Domain Member. > > And yes i ve done all this settings. First i got this Error: > > Enter SAMDOM\administrator's password: > Could not connect to server 127.0.0.1 > The username or password was not correct. > Connection failed: NT_STATUS_LOGON_FAILURE > > But the troubleshooting guide > (https://wiki.samba.org/index.php/Samba_Member_Server_Troubleshooting) > helped me to fix this problem. But im notable to set ACL with the > administrator account. >You shouldn't try to login as Administrator on a Unix Domain member, the user.map maps the windows 'Administrator' to the Unix user 'root', so you use 'Administrator' on windows and 'root' on Unix. Does 'getent passwd Administrator' produce any output ? and if so what ? You could try 'net cache flush' and see if this helps. Rowland
On Fri, 26 Jan 2018 14:10:40 +0100 Micha Ballmann <ballmann at uni-landau.de> wrote:> To set share windows permissions and windows acl i login on a windows > 7 computer with the administrator user.|Open ||Computer Management > and connect to the fileserver. when im trying now to set acl i ve no > permissions.||||||| >Well, I couldn't understand why it wasn't working, so I fired up a VM running win7 and guess what, it doesn't work for me either, it did, but it doesn't now :-( I will get back to you. Rowland
On Fri, 26 Jan 2018 14:18:53 +0000 Rowland Penny via samba <samba at lists.samba.org> wrote:> On Fri, 26 Jan 2018 14:10:40 +0100 > Micha Ballmann <ballmann at uni-landau.de> wrote: > > > To set share windows permissions and windows acl i login on a > > windows 7 computer with the administrator user.|Open ||Computer > > Management and connect to the fileserver. when im trying now to set > > acl i ve no permissions.||||||| > > > > Well, I couldn't understand why it wasn't working, so I fired up a VM > running win7 and guess what, it doesn't work for me either, it did, > but it doesn't now :-( > > I will get back to you. > > Rowland >OK, I found out why it wasn't working, I was connecting to a share that belonged to 'root:root' with 'drwxr-xr-x' permissions. I created a new share: [data] path = /home/testdata read only = no mkdir /home/testdata getfacl /home/testdata shows this: getfacl: Removing leading '/' from absolute path names # file: home/testdata # owner: rowland # group: domain\040users user::rwx user:root:rwx group::--- group:root:--- group:2004:r-x group:2005:rwx mask::rwx other::--- default:user::rwx default:user:root:rwx default:group::--- default:group:root:--- default:group:2004:r-x default:group:2005:rwx default:mask::rwx default:other::--- Change the ownership: chown root:Unix\ Admins /home/testdata Now go to the Win7 VM and add 'rowland' back as a user with 'Read & execute, List folder contents and Read' permissions. This worked without error and getfacl now shows: getfacl: Removing leading '/' from absolute path names # file: home/testdata # owner: root # group: unix\040admins user::rwx user:root:rwx user:rowland:r-x group::--- group:root:--- group:2004:r-x group:2005:rwx group:unix\040admins:--- mask::rwx other::--- default:user::rwx default:user:root:rwx default:user:rowland:r-x default:group::--- default:group:root:--- default:group:2004:r-x default:group:2005:rwx default:group:unix\040admins:--- default:mask::rwx default:other::--- Do you have these lines in smb.conf: vfs objects = acl_xattr map acl inherit = Yes store dos attributes = Yes Are the 'acl' and 'attr' packages installed. Rowland