[Samba] winbind

Tom Hallewell hallewellt at rfa.org
Tue Dec 3 15:07:01 GMT 2002

It sounds like you want to include ACL Support, which I don't believe is the
default in most samba packages.
As ACL support is still an experimental kernel feature, you will need to
patch your kernel, and install Extended Attribute, ACL support and a
modified e2fsprogs so that ls, chmod, etc. work properly.
These, along with very good installation instructions, can be found at
http://www.acl.bestbits.at .
We set it up on a Debian machine with minimal headaches, the RPM packages
should make it a no-brainer on Redhat.
Then you will need to build a new samba rpm --with-acl-support to enable the
ability for granular permissions.

Good luck!
Tom Hallewell
Network and Information Services Department
Radio Free Asia
Washington, DC

Message: 11
Date: Tue, 03 Dec 2002 10:43:25 +0400
From: "Yousef I. Adan" <yousef at emirates.net.ae>
To: samba at lists.samba.org
Subject: [Samba] winbind
> We are in the process of implementing Linux-cum-samba in our NT
> environment. We are trying to integrate the security with
> winbind. Joined the NT domain, no problem. Can list the users and
> groups thru wbinbfo. Gave a uid and gid range to the nt users in
> smb.conf. made couple of changes in nsswitch as suggested by the
> documentation, password: files winbind and groups: files winbind.
> It seems that this version of samba had already winbind
> integrated so that we didn't have to compile it again and we
> didn't do anything in the PAM area.
> The permissions on the linux box map to:owner, group and everyone
> only. No more users/groups can be added but it seems you can
> amend this three entries. How can we implement the file and
> directory permissions with the same granularity as the NT, using
> samba and winbind, since there is no concept of local and global
> groups on the linux box? I am not a linux or unix expert, so any
> seemingly simple stuff could help in my case.
> Any help is appreciated.
> Yousef
> PS: We have downloaded all the relevant documentation, but they
> seem to be for earlier versions of linux and samba such as 7.1.
> Nothing specifically written for Linux 8.0 and samba 2.2.7.

More information about the samba mailing list