Rowland Penny
2021-Dec-06 21:03 UTC
[Samba] Fwd: Administrator User Has no access to Remote File Server
On Mon, 2021-12-06 at 15:56 -0500, ralph strebbing via samba wrote:> Forwarding due to not hitting Reply-All: > On Mon, Dec 6, 2021, 3:52 PM Rowland Penny <rpenny at samba.org> wrote: > > NO, you must add RFC2307 attributes (uidNumber, gidNumber, uid etc) > > to > > your user & group objects in AD > > The '3000000' numbers found on a Samba AD DC are not RFC2307 > > attributes, they are 'xidNumber' attributes (the starting 'x' is > > not a > > wildcard) and they are only found on a Samba AD DC. > > Oh! Well then yes, the users and groups do have RFC2307 attributes, I > made sure they were added when we moved from the old NT4 domain. > I did not (per the wiki) add the UID to the Administrator user > however. It remains to be unset.Good, never give Administrator a uidNumber attribute, it just becomes a normal user, just try adding 'min domain uid = 0' to the smb.conf on the Unix Domain members and restart Samba. If that does not work, please define 'Administrator user has no access' Rowland
ralph strebbing
2021-Dec-06 21:11 UTC
[Samba] Fwd: Administrator User Has no access to Remote File Server
On Mon, Dec 6, 2021 at 4:04 PM Rowland Penny via samba <samba at lists.samba.org> wrote:> Good, never give Administrator a uidNumber attribute, it just becomes a > normal user, just try adding 'min domain uid = 0' to the smb.conf on > the Unix Domain members and restart Samba. > If that does not work, please define 'Administrator user has no access'Just tried on our secondary fileserver and no change. Has no access is defined as: When I try to access shares using the Administrator user, it tells me I can't access it, but if I use MY domain user, it works just fine. Ralph
L.P.H. van Belle
2021-Dec-07 07:48 UTC
[Samba] Fwd: Administrator User Has no access to Remote File Server
Run : getfacl /storage getfacl /storage/netfiles getfacl /storage/netfiles/mis Whats set for the share security? Normaly thats everyone full controll, did you change anything here? Greetz, Louis> -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens > ralph strebbing via samba > Verzonden: maandag 6 december 2021 22:12 > Aan: Rowland Penny > CC: sambalist > Onderwerp: Re: [Samba] Fwd: Administrator User Has no access > to Remote File Server > > On Mon, Dec 6, 2021 at 4:04 PM Rowland Penny via samba > <samba at lists.samba.org> wrote: > > Good, never give Administrator a uidNumber attribute, it > just becomes a > > normal user, just try adding 'min domain uid = 0' to the smb.conf on > > the Unix Domain members and restart Samba. > > If that does not work, please define 'Administrator user > has no access' > Just tried on our secondary fileserver and no change. > Has no access is defined as: When I try to access shares using the > Administrator user, it tells me I can't access it, but if I use MY > domain user, it works just fine. > > Ralph > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > >