[Samba] Propblem in Managing File Permission

updatemyself . updatemyself at gmail.com
Thu Nov 24 17:47:59 GMT 2005

Hai All,

My Problem is Managing File permission in Samba Share...
Through Windows XP...

  I am having a Samba File server that managing 6 TB Volume,
i divided it to 6 equal Volumes... so each share is.. 1 TB,
and assigned each volume for different Projects...
in each projects more then 500 Ppls are working...
About the servers performance.. and load balancing...
everything is working fine.. with me....

My problem is Setting the permission only...
in each project... not all but many peoples need.. full permission..
So in group wise.. i assigned it to for particular folders
here is my problems starts....
while the ppl who having full permission, create a folder or file..
the ownership comes as in their name only...
so none other cant open it... Till i change the ownership..
to "domain administrator" in Linux using chown command
and reset the permissions from Windows...
Help me if anyone have the idea to overcome this situation..
i cant use.... "force user =" option... because..
that giving the same access to all users...

My Samba servers and all WindowsXP Clients are Authenticating
through Windows 2003 ADS

samba version samba-3.0.14a-1 is recompiled with "--with-acl-support"
is running in Red Hat Enterprise Linux ES (2.6.9-11.EL)

Here is my smb.conf configuration file...
#================ Global Settings ==================#

   workgroup = MYDOMAIN
   server string = Samba Server
   log file = /var/log/samba/%m.log
   max log size = 50
   security = ads
   encrypt passwords = yes
   socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
   dns proxy = no

#============== Share Definitions ==================#
   #ldap idmap suffix = ou=emplist,dc=dqe,dc=com
   password server =
   realm = MYDOMAIN.COM
   idmap uid = 16777216-33554431
   idmap gid = 16777216-33554431
   template shell = /bin/bash
   template homedir = /home/%D/%U
   allow trusted domains = no
   idmap backend = idmap_rid:DQE=16777216-33554431
   winbind use default domain = yes

   path = /vol01_1000
   writable = yes
   public = yes
   nt acl support = yes
   create mask = 0755
   security mask = 0755
   inherit permissions = yes
   inherit acls = yes
   force security mode = 0
   directory security mask = 0777
   force directory security mode = 0

Please Share Your knowledge to solve this problem...

Thank You in Advance,


More information about the samba mailing list