Hello, I will change a old samba share (SMB1 samba 3) to a new samba 4.8.3 (as unix domain member server). For this, I will copy datas from old share to the share via a rsync ssh command : rsync -aAX --progress --delete --stats --human-readable -e "ssh -p 22" root at oldsambaserver:/mypath/* /mypath/ This command copy also all the acls from the old samba share and apply it on the new share. But, I have to re apply new acls because I am using Posix attributes for uid and gid ;? the old share is a samba 3 (gid are in range 500-999) and new share is a samba 4 (with gid in domain range 14500 - 14999). I would like to remove all uids and gids ; some acls for users (uid) were applied on the old share tree, I would to remove them especially. Then I will apply the new acls. Is there a linux command to reset all the acls on a folder tree (and files) ? Edouard
On 25/06/2019 14:07, Edouard Guign? via samba wrote:> Hello, > > I will change a old samba share (SMB1 samba 3) to a new samba 4.8.3 > (as unix domain member server). > > For this, I will copy datas from old share to the share via a rsync > ssh command : > rsync -aAX --progress --delete --stats --human-readable -e "ssh -p 22" > root at oldsambaserver:/mypath/* /mypath/ > > This command copy also all the acls from the old samba share and apply > it on the new share. > > But, I have to re apply new acls because I am using Posix attributes > for uid and gid ;? the old share is a samba 3 (gid are in range > 500-999) and new share is a samba 4 (with gid in domain range 14500 - > 14999). > > I would like to remove all uids and gids ; some acls for users (uid) > were applied on the old share tree, I would to remove them especially. > Then I will apply the new acls. > > Is there a linux command to reset all the acls on a folder tree (and > files) ? > > Edouard > >If you are using rsync 3.1.0 (or above) it has the options '--usermap' & '--groupmap', perhaps you can use these ? Rowland
Mandi! Edouard Guign? via samba In chel di` si favelave...> Is there a linux command to reset all the acls on a folder tree (and files) > ?AFAIK dump of ACL via 'getfacl' save it in descriptive form (login, not UID), so you can restore on dest server. But, again AFAIK, also rsync with --acls transfer ACLs in 'descriptive'' form, so ACL of user gaio in server A (UID=100) became correctly ACL of user gaio in server B (UID=1000). Clearly, if you have changed UID *AND* login names... -- dott. Marco Gaiarin GNUPG Key ID: 240A3D66 Associazione ``La Nostra Famiglia'' http://www.lanostrafamiglia.it/ Polo FVG - Via della Bont?, 7 - 33078 - San Vito al Tagliamento (PN) marco.gaiarin(at)lanostrafamiglia.it t +39-0434-842711 f +39-0434-842797 Dona il 5 PER MILLE a LA NOSTRA FAMIGLIA! http://www.lanostrafamiglia.it/index.php/it/sostienici/5x1000 (cf 00307430132, categoria ONLUS oppure RICERCA SANITARIA)
Seemingly Similar Threads
- Fwd: Re: Fwd: Re: Kerberos and NTLMv2 authentication
- Fwd: Re: Fwd: Re: Fwd: Re: Kerberos and NTLMv2 authentication
- Fwd: Re: Fwd: Re: Fwd: Re: Kerberos and NTLMv2 authentication
- Fwd: Re: Fwd: Re: Kerberos and NTLMv2 authentication
- Fwd: Re: Fwd: Re: Fwd: Re: Kerberos and NTLMv2 authentication