[Samba] Trouble with ACLs

Michael St. Laurent mikes at hartwellcorp.com
Tue May 25 01:21:26 GMT 2004

I've got ACLs enabled in the kernel now and I can add and/or remove them
using the unix command line program (setfacl/getfacl).  However, there still
seems to be a problem.  When I try to add an ACL type permission to a file
(through Samba) I get the following in the log file:

[2004/05/24 18:14:57, 0] smbd/posix_acls.c:create_canon_ace_lists(1381)
create_canon_ace_lists: unable to map SID
S-1-5-21-356471451-824197641-1237804090-1180 to uid or gid.

I'm fairly certain that Samba was compiled with the --with-acl-support
option so I think the problem is with my smb.conf file.

Below is the relevant section:

        workgroup = MERCURY
        server string = Hart-NAS Storage Server
        security = DOMAIN
        encrypt passwords = Yes
        password server = *
        winbind trusted domains only = Yes
        idmap gid = 30000-40000
        idmap uid = 30000-40000
        log file = /var/log/samba/log.%m
        log level = 0
        max log size = 50
        socket options = TCP_NODELAY IPTOS_LOWDELAY SO_RCVBUF=8192
        load printers = No
        printcap name = /etc/samba/smbprinters
        add user script = /usr/local/sbin/add_smb_user %u
        os level = 0
        local master = No
        dns proxy = No
        wins server =
        write cache size = 524288
        max xmit = 65535

Michael St. Laurent
Hartwell Corporation

More information about the samba mailing list