ACL support 2.2.7a

Johannes Tyve johannes.tyve at
Fri Jan 24 13:55:59 GMT 2003

Client: Windows XP
Server: Samba 2.2.2, 2.2.5 - Solaris 2.6, 8
Security: Domain, NT PDC
We have the same problem a you but with XP not NT. Have your resolved it?
ACL's can be modified from the security tab from windows XP but not added.
Using NT it works.
Users and groups are listed as:
but when you try to add a user / group the only thing XP accept is:
DOMAIN\user and DOMAIN\group
and when you apply the rights they disappear. Usernames are the same in NIS
and the NT domain.
I used the following environment:
- Samba 2.2.7a
- AIX 5.2
- PDC on NT

Operations that work:
- Change a manually added, with acledit, acl user or group entry from NT
- Remove a manually, added, with acledit, acl user or group entry from NT

 Operations that does not work:
- Add acl user or group entry from NT (the user can manually add acl entries
with acledit on the file)

This worked on AIX 5.1 with Samba 2.2.5 (tested with users). Maybe the acl
structures has been changed in AIX 5.2?

Logfile shows that chacl() sets errno 2 (ENOENT) indicating that the file
does not exist:
 Starting AIX sys_acl_set_permset
 entry->ace_access = 448
 Ending AIX sys_acl_set_permset
 user_obj=1, group_obj=1, other_obj=1
 Entering sys_acl_set_file
 File name is testit.txt
 errno is 2
 return code is 0
 Exiting the sys_acl_set_file

 ls -l testit.txt:
 total 1
 -rwxrwxrwx   1 aaa      a                24 Jan 21 14:42 testit.txt

 aclget testit.txt:
 base permissions
     owner(aaa):  rwx
     group(a):  rwx
     others:  rwx
 extended permissions

More information about the samba-technical mailing list