[Samba] Fix sharing ACL
Ricardo Pardim Claus
ricardo.claus at yahoo.com.br
Mon Oct 24 14:00:21 UTC 2016
Gentlemen,
I am struggling to solve this problem.
My file server Samba 4.4.5.
Even the administrator user (domain admin) could not write to the share.
Could someone give me a hint, in order to solve this problem?
shared folder: /mnt/data
Folder permissions:
# getfacl /mnt/data/teste/
getfacl: Removing leading '/' from absolute path names
# file: mnt/data/teste/
# owner: ricardo
# group: domain\040admins
user::rwx
user:domain\040admins:rwx
user:ricardo:rwx
group::rwx
mask::rwx
other::r-x
default:user::rwx
default:user:domain\040admins:rwx
default:user:ricardo:rwx
default:group::rwx
default:group:domain\040admins:rwx
default:group:ti-infra:rwx
default:mask::rwx
default:other::r-x
The smb.conf the fileserver:
[data]
comment = Folder data
path = /mnt/data
read only = no
browseable = yes
#
map acl inherit = yes
store dos attributes = yes
#
inherit acls = Yes
inherit permissions = Yes
guest account = guest
guest ok=yes
writeable = Yes
# Recycle
vfs objects = acl_xattr, recycle, shadow_copy2, full_audit
#vfs objects = recycle, shadow_copy2
recycle:facility = LOCAL1
recycle:priority = NOTICE
recycle:maxsize = 0
recycle:directory_mode = 0774
recycle:subdir_mode = 0774
recycle:keeptree = true
recycle:touch = true
recycle:versions = true
recycle:exclude = *.tmp, *.log, *.obj, ~*.*, *.bak, *.exe, *.bin
recycle:exclude_dir = tmp, temp, cache
create mask = 0774
directory mask = 0774
# SHADOW COPY / SNAPSHOT
shadow:mountpoint = /mnt/data/
shadow:snapdir = .snapshot
shadow:basedir = /mnt/
shadow:sort = desc
shadow:localtime = yes
shadow:format = @GMT-%Y.%m.%d-%H.%M.%S
# AUDIT FILESERVER
full_audit:prefix = %u|%I|%S|%g
full_audit:success = all
full_audit:failure = all !open
full_audit:facility = local1
full_audit:priority = ALERT
More information about the samba
mailing list