[Samba] Primary and secondary group issues with Vintela VAS and Samba

Marc Donnelly marc at targetadv.com
Mon Feb 20 21:29:18 GMT 2006


I'm wondering if anyone on the Samba mailing list has seen this problem 
with Vintela VAS and Samba.

----------
The problem I am having is that Vintela VAS knows about the groups in 
AD but Samba only seems to recognize a user's primary group in AD. So, 
if I chgrp a file or directory in Solaris to anything other than a 
user's primary group and share it out via samba, a user is not able to 
access the file or directory even though they are a member of the group 
I used.

We're able to view the groups via "/opt/vas/bin/vastool list groups" 
without a problem.

system specs:
Solaris 10
VAS 2.6SP4
Samba 3.0.21b
heimdal kerberos libraries 0.7.1

/etc/nsswitch.conf
passwd: files vas
group: files vas

We followed the following instructions for installation:
http://rc.vintela.com/topics/samba/howto-heimdal.php

so in short
vas + solaris = works great!
vas + solaris + samba = doesn't work except for the primary group.

It's a longshot to post this to the Samba mailing list, but any 
suggestions would greatly help!

-marc



More information about the samba mailing list