[Samba] Peculiar Samba permission denied error

Moray Henderson Moray.Henderson at ict-software.org
Fri Jun 11 03:01:27 MDT 2010 

Benjamin Allen (and peacefulhappybs247) wrote:
>I've been trying to figure this out for some time and can't quite nail
it
>down, despite searching the internet, and a couple of samba books. Here
>goes:
>
>I'm running "Version 3.4.3-3.3.1-2341-SUSE-SL11.2" of Samba on OpenSUSE
>11.2.
>
>Here are some relevant excerpts from my smb.conf file:
>
>[global]
>...
>security = ADS
>...
>winbind separator = +
>...
>log level = 2
>...
>
>[xdrives]
>comment = X Drive Repository
>       path = /share/samba/domain/home
>       browseable = yes
>       create mask = 0700
>       directory mask = 0700
>       valid users = @OURDOMAIN+smb  (this is a group)
>       inherit acls = no
>       hide unreadable = no
>       read only = no
>
>I have AD authentication running via winbind, and the "Kerberos"
element
>is
>working also.
>
>So, "wbinfo -g" produces all groups in the same format as entered in
this
>share:
>
>"
>OURDOMAIN+Administrators
>...
>OURDOMAIN+smb
>"
>
>The filesystem "path =" directory has been chown'd to my name+that
domain
>group(of which I am a member).
>
>"chown OURDOMAIN+me:OURDOMAIN+smb"
>
>Also, I "chmodded" it to 0777 for testing.
>
>Yet... *ARGH!*
>
>When I try accessing this share from windows "Run" or Konqueror on
another
>linux, I get this on the server:
>
>tail /var/log/samba/log.smbd
>
>"...
>[2010/06/07 09:41:37,  2] auth/auth.c:310(check_ntlm_
>password)
> check_ntlm_password:  authentication for user [me] -> [me] ->
>[OURDOMAIN+me] succeeded
>[2010/06/07 09:41:37,  0] smbd/service.c:1009(make_connection_snum)
> '/share/samba/domain/home' does not exist or permission denied when
>connecting to [xdrives] Error was Permission denied
>..."
>
>Copy pasting the entry “'/share/samba/domain/home'” right out of the
>above:
>
>ServerName:~ # ls -lah /share/samba/domain/home
>total 512
>drwxrwxrwx 23 OURDOMAIN+me     OURDOMAIN+smb 584 Jun  3 10:06 .
>
>I earlier changed the mountpoint of this partition to /share as /srv
>wasn't
>working. Just now, I put in "path = /home" as a reality check, and
>remotely
>accessed \\<server.ip>\<folder>, and it succeeded. I only received an
>error
>message when trying to create a new folder.
>
>What am I missing?

If OpenSUSE uses SELinux or some equivalent, this sounds like the same
problem Jeff was having:
http://lists.samba.org/archive/samba/2010-May/156197.html.



Moray.
"To err is human.  To purr, feline"

More information about the samba mailing list