> -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens > Rowland Penny via samba > Verzonden: woensdag 6 februari 2019 16:33 > Aan: samba at lists.samba.org > Onderwerp: Re: [Samba] unix_primary_group = yes don t work > > On Wed, 6 Feb 2019 15:58:52 +0100 > L.P.H. van Belle <belle at bazuin.nl> wrote: > > > Hai Rowland, > > > > Thats strange.. my test shows different things. > > > > A SSH login, SSO/kerberos on domain member with nfsv4 kerberized > > mounted homedir. Tested samba 4.8.8 and 4.9.4 (members) > > > > touch test-for-Rowland > > -rw-r----- 1 louis domain users 0 Feb 6 15:42 > > test-for-Rowland > > > > And i copied this from my w10 pc. > > -rwxrwx--- 1 louis domain users 0 Feb 6 15:42 > > test-for-Rowland - kopie > > > > And a new txt file made from my pc > > -rwxrwx--- 1 louis domain users 0 Feb 6 15:45 Nieuw > > tekstdocument for Rowland.txt > > > > > > I tested from win10 and got this: > > root at testsmb:~# ls -la /home/data > total 16 > drwxrwxrwx 2 root root 4096 Feb 6 15:17 . > drwxr-xr-x 5 root root 4096 Feb 6 13:42 .. > -rwxrwxr-x+ 1 giduser domain users 0 Feb 6 13:48 test.txt > -rwxrwxr-x+ 1 giduser domain users 0 Feb 6 15:17 wintest.txt> root at testsmb:~# ls -la /home/giduser/test.txt > -rw-r--r-- 1 giduser unixgroup 0 Feb 6 14:31 /home/giduser/test.txt> root at testsmb:~# getent passwd giduser > giduser:*:10048:10002::/home/giduser:/bin/bash> root at testsmb:~# id giduser > uid=10048(giduser) gid=10002(unixgroup) > groups=10002(unixgroup),10000(domain users),3001(BUILTIN\users)> > Use Unix tools and the Unix primary group is honoured, use > Samba/Windows and it isn't.My guess here. That is because of misconfiguration of the base of the users homedir You need 1700 or 3700 on /home/data Can you try that.> > Rowland > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba >
On Wed, 6 Feb 2019 16:40:42 +0100 "L.P.H. van Belle via samba" <samba at lists.samba.org> wrote:> > > -----Oorspronkelijk bericht----- > > Van: samba [mailto:samba-bounces at lists.samba.org] Namens > > Rowland Penny via samba > > Verzonden: woensdag 6 februari 2019 16:33 > > Aan: samba at lists.samba.org > > Onderwerp: Re: [Samba] unix_primary_group = yes don t work > > > > On Wed, 6 Feb 2019 15:58:52 +0100 > > L.P.H. van Belle <belle at bazuin.nl> wrote: > > > > > Hai Rowland, > > > > > > Thats strange.. my test shows different things. > > > > > > A SSH login, SSO/kerberos on domain member with nfsv4 kerberized > > > mounted homedir. Tested samba 4.8.8 and 4.9.4 (members) > > > > > > touch test-for-Rowland > > > -rw-r----- 1 louis domain users 0 Feb 6 15:42 > > > test-for-Rowland > > > > > > And i copied this from my w10 pc. > > > -rwxrwx--- 1 louis domain users 0 Feb 6 15:42 > > > test-for-Rowland - kopie > > > > > > And a new txt file made from my pc > > > -rwxrwx--- 1 louis domain users 0 Feb 6 15:45 Nieuw > > > tekstdocument for Rowland.txt > > > > > > > > > > I tested from win10 and got this: > > > > root at testsmb:~# ls -la /home/data > > total 16 > > drwxrwxrwx 2 root root 4096 Feb 6 15:17 . > > drwxr-xr-x 5 root root 4096 Feb 6 13:42 .. > > -rwxrwxr-x+ 1 giduser domain users 0 Feb 6 13:48 test.txt > > -rwxrwxr-x+ 1 giduser domain users 0 Feb 6 15:17 wintest.txt > > > root at testsmb:~# ls -la /home/giduser/test.txt > > -rw-r--r-- 1 giduser unixgroup 0 Feb 6 14:31 /home/giduser/test.txt > > > root at testsmb:~# getent passwd giduser > > giduser:*:10048:10002::/home/giduser:/bin/bash > > > root at testsmb:~# id giduser > > uid=10048(giduser) gid=10002(unixgroup) > > groups=10002(unixgroup),10000(domain users),3001(BUILTIN\users) > > > > > Use Unix tools and the Unix primary group is honoured, use > > Samba/Windows and it isn't. > > My guess here. > That is because of misconfiguration of the base of the users homedir > > You need 1700 or 3700 on /home/data > Can you try that.OK, tried that, it locked me out until I used setfacl, same result, adding a file used the Windows primary group. Rowland
OK for the test, i made a new share like you : [users] browseable = yes path = /srv/samba/users read only = no From windows, i ve changed the rights on the share and change the homedir drive path from \\fileserver\dare to \\fileserver\users\dare Everything works like a charm until now. From windows, create a new directory and a file. root at mom11:/srv/samba/users/dare# ls -l total 16 drwxrws---+ 2 dare domain users 4096 févr. 6 16:59 test_win10_v2 -rwxrwx---+ 1 dare domain users 4 févr. 6 16:59 test_win10_v2.txt root at mom11:/srv/samba/users/dare# getfacl test_win10_v2.txt # file: test_win10_v2.txt # owner: dare # group: domain\040users user::rwx user:dare:rwx group::--- group:domain\040users:--- group:domain\040admins:rwx group:BUILTIN\134administrators:rwx mask::rwx other::--- id dare uid=202369(dare) gid=151495(pnia) groupes=151495(pnia),105000(domain users),700000002(BUILTIN\users) getent passwd dare dare:*:202369:151495:Christian Dare:/home/d/dare:/bin/tcsh No sign of my primary group PNIA in the acls windows created. Le 06/02/2019 à 16:40, L.P.H. van Belle via samba a écrit :>> -----Oorspronkelijk bericht----- >> Van: samba [mailto:samba-bounces at lists.samba.org] Namens >> Rowland Penny via samba >> Verzonden: woensdag 6 februari 2019 16:33 >> Aan: samba at lists.samba.org >> Onderwerp: Re: [Samba] unix_primary_group = yes don t work >> >> On Wed, 6 Feb 2019 15:58:52 +0100 >> L.P.H. van Belle <belle at bazuin.nl> wrote: >> >>> Hai Rowland, >>> >>> Thats strange.. my test shows different things. >>> >>> A SSH login, SSO/kerberos on domain member with nfsv4 kerberized >>> mounted homedir. Tested samba 4.8.8 and 4.9.4 (members) >>> >>> touch test-for-Rowland >>> -rw-r----- 1 louis domain users 0 Feb 6 15:42 >>> test-for-Rowland >>> >>> And i copied this from my w10 pc. >>> -rwxrwx--- 1 louis domain users 0 Feb 6 15:42 >>> test-for-Rowland - kopie >>> >>> And a new txt file made from my pc >>> -rwxrwx--- 1 louis domain users 0 Feb 6 15:45 Nieuw >>> tekstdocument for Rowland.txt >>> >>> >> I tested from win10 and got this: >> >> root at testsmb:~# ls -la /home/data >> total 16 >> drwxrwxrwx 2 root root 4096 Feb 6 15:17 . >> drwxr-xr-x 5 root root 4096 Feb 6 13:42 .. >> -rwxrwxr-x+ 1 giduser domain users 0 Feb 6 13:48 test.txt >> -rwxrwxr-x+ 1 giduser domain users 0 Feb 6 15:17 wintest.txt >> root at testsmb:~# ls -la /home/giduser/test.txt >> -rw-r--r-- 1 giduser unixgroup 0 Feb 6 14:31 /home/giduser/test.txt >> root at testsmb:~# getent passwd giduser >> giduser:*:10048:10002::/home/giduser:/bin/bash >> root at testsmb:~# id giduser >> uid=10048(giduser) gid=10002(unixgroup) >> groups=10002(unixgroup),10000(domain users),3001(BUILTIN\users) >> Use Unix tools and the Unix primary group is honoured, use >> Samba/Windows and it isn't. > My guess here. > That is because of misconfiguration of the base of the users homedir > > You need 1700 or 3700 on /home/data > Can you try that. > > >> Rowland >> >> -- >> To unsubscribe from this list go to the following URL and read the >> instructions: https://lists.samba.org/mailman/options/samba >> >-- UBO <http://www.univ-brest.fr>
Hmm, Yes Rowland it test also failed. id louis uid=10002(louis) gid=10000(domain users) groups=10000(domain users),27(sudo),10004(servers-ssh),10008(servers-www) louis at mailhopper2:~$ getent passwd louis obell:*:10002:10000:L.P.H. van Belle:/home/users/louis:/bin/bash The difference here is all my users have "Domain users" as primary group. Just like in windows, that the difference between our config/setups. Greetz, Louis> -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens > Christian Daré via samba > Verzonden: woensdag 6 februari 2019 17:09 > Aan: samba at lists.samba.org > Onderwerp: Re: [Samba] unix_primary_group = yes don t work > > OK for the test, i made a new share like you : > > [users] > browseable = yes > path = /srv/samba/users > read only = no > > From windows, i ve changed the rights on the share and change the > homedir drive path from \\fileserver\dare to \\fileserver\users\dare > > Everything works like a charm until now. > From windows, create a new directory and a file. > > root at mom11:/srv/samba/users/dare# ls -l > total 16 > drwxrws---+ 2 dare domain users 4096 févr. 6 16:59 test_win10_v2 > -rwxrwx---+ 1 dare domain users 4 févr. 6 16:59 test_win10_v2.txt > > root at mom11:/srv/samba/users/dare# getfacl test_win10_v2.txt > # file: test_win10_v2.txt > # owner: dare > # group: domain\040users > user::rwx > user:dare:rwx > group::--- > group:domain\040users:--- > group:domain\040admins:rwx > group:BUILTIN\134administrators:rwx > mask::rwx > other::--- > > id dare > uid=202369(dare) gid=151495(pnia) groupes=151495(pnia),105000(domain > users),700000002(BUILTIN\users) > > getent passwd dare > dare:*:202369:151495:Christian Dare:/home/d/dare:/bin/tcsh > > No sign of my primary group PNIA in the acls windows created. > > > Le 06/02/2019 à 16:40, L.P.H. van Belle via samba a écrit : > >> -----Oorspronkelijk bericht----- > >> Van: samba [mailto:samba-bounces at lists.samba.org] Namens > >> Rowland Penny via samba > >> Verzonden: woensdag 6 februari 2019 16:33 > >> Aan: samba at lists.samba.org > >> Onderwerp: Re: [Samba] unix_primary_group = yes don t work > >> > >> On Wed, 6 Feb 2019 15:58:52 +0100 > >> L.P.H. van Belle <belle at bazuin.nl> wrote: > >> > >>> Hai Rowland, > >>> > >>> Thats strange.. my test shows different things. > >>> > >>> A SSH login, SSO/kerberos on domain member with nfsv4 kerberized > >>> mounted homedir. Tested samba 4.8.8 and 4.9.4 (members) > >>> > >>> touch test-for-Rowland > >>> -rw-r----- 1 louis domain users 0 Feb 6 15:42 > >>> test-for-Rowland > >>> > >>> And i copied this from my w10 pc. > >>> -rwxrwx--- 1 louis domain users 0 Feb 6 15:42 > >>> test-for-Rowland - kopie > >>> > >>> And a new txt file made from my pc > >>> -rwxrwx--- 1 louis domain users 0 Feb 6 15:45 Nieuw > >>> tekstdocument for Rowland.txt > >>> > >>> > >> I tested from win10 and got this: > >> > >> root at testsmb:~# ls -la /home/data > >> total 16 > >> drwxrwxrwx 2 root root 4096 Feb 6 15:17 . > >> drwxr-xr-x 5 root root 4096 Feb 6 13:42 .. > >> -rwxrwxr-x+ 1 giduser domain users 0 Feb 6 13:48 test.txt > >> -rwxrwxr-x+ 1 giduser domain users 0 Feb 6 15:17 wintest.txt > >> root at testsmb:~# ls -la /home/giduser/test.txt > >> -rw-r--r-- 1 giduser unixgroup 0 Feb 6 14:31 > /home/giduser/test.txt > >> root at testsmb:~# getent passwd giduser > >> giduser:*:10048:10002::/home/giduser:/bin/bash > >> root at testsmb:~# id giduser > >> uid=10048(giduser) gid=10002(unixgroup) > >> groups=10002(unixgroup),10000(domain users),3001(BUILTIN\users) > >> Use Unix tools and the Unix primary group is honoured, use > >> Samba/Windows and it isn't. > > My guess here. > > That is because of misconfiguration of the base of the users homedir > > > > You need 1700 or 3700 on /home/data > > Can you try that. > > > > > >> Rowland > >> > >> -- > >> To unsubscribe from this list go to the following URL and read the > >> instructions: https://lists.samba.org/mailman/options/samba > >> > > > > -- > UBO <http://www.univ-brest.fr> > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba >
On Wed, 6 Feb 2019 17:18:51 +0100 "L.P.H. van Belle via samba" <samba at lists.samba.org> wrote:> Hmm, Yes Rowland it test also failed. > > id louis > uid=10002(louis) gid=10000(domain users) groups=10000(domain > users),27(sudo),10004(servers-ssh),10008(servers-www) > > louis at mailhopper2:~$ getent passwd louis > obell:*:10002:10000:L.P.H. van Belle:/home/users/louis:/bin/bash > > The difference here is all my users have "Domain users" as primary > group. Just like in windows, that the difference between our > config/setups. >If your users have 'gidNumber: 10000' in their object and '10000' is the gidNumber for 'Domain Users', then you do not actually need the gidNumber in the users object and the 'unix_primary_group = yes' line in smb.conf. Rowland