Setting ACLs when creating files from Windows

Volker Lendecke Volker.Lendecke at SerNet.DE
Thu Jul 31 17:09:02 GMT 2008

On Thu, Jul 31, 2008 at 10:35:46AM +0200, Corinna Vinschen wrote:
> That's all.  Apparently Samba knows to switch to the local UNIX user
> corinna from the incoming request and creates the file as that user.
> But eventually, in the call tyo set_nt_acl, legacy_sid_to_uid doesn't
> know about the user mapping anymore and fails.

The problem very likely is that
S-1-5-21-2913048732-1697188782-3448811101-1001 is the SID of
user corinna on the workstation you're coming from, which
has nothing to do with the user corinna on the Samba box. If
you do a "net getlocalsid" on the samba box, you will
probably get a different SID prefix than
S-1-5-21-2913048732-1697188782-3448811101. You might want to
do a lookupname() (don't know the API call in win32) against
the samba box before choosing the SID to set in the sd.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url :

More information about the samba-technical mailing list