[Samba] Samba4 as domain member and file server
Johan Johansson
johantd04 at me.com
Sun Mar 3 09:12:08 MST 2013
Hi guys,
I'm having trouble setting up my file server running Samba 4 (4.0.3). I had no problem joining the domain (also a Samba 4 (4.0.3) with AD) but I can't get the ACL to work properly. I'm sure my settings are wrong and hoping for some help.
When I try to set a user permission I get this error:
setfacl -m u:administrator:rwx test3.txt
setfacl: test3.txt: Malformed access ACL `user::rw-,group::r--,group:adm:rwx,mask::rwx,other::r--,user:4294967295:rwx': Missing or wrong entry at entry 6
Byt when I try to set a group I don't get any error, but the settings does not stick:
root at sto-file01:/var/files# setfacl -m g:"domain users":rwx test3.txt
root at sto-file01:/var/files# getfacl test3.txt
# file: test3.txt
# owner: root
# group: root
user::rw-
group::r--
group:adm:rwx
mask::rwx
other::r--
My smb.conf:
# Global parameters
[global]
workgroup = CORP
realm = corp.lo
netbios name = STO-FILE01
security = ADS
encrypt passwords = Yes
map untrusted to domain = Yes
idmap backend = ad
winbind enum users = Yes
winbind enum groups = Yes
winbind use default domain = Yes
winbind nss info = rfc2307
idmap config corp:range = 1000-2000000000
idmap config corp:schema_mode = rfc2307
idmap config corp:backend = ad
create mask = 0777
directory mask = 0777
[files]
path = /var/files
read only = No
Wbinfo:
wbinfo -i jjn
jjn:*:4294967295:4294967295:Johan Johansson:/home/CORP/jjn:/bin/false
getfacl:
getfacl test3.txt
# file: test3.txt
# owner: root
# group: root
user::rw-
group::r--
group:adm:rwx
mask::rwx
other::r--
More information about the samba
mailing list