[Samba] Samba 4 AD share: Access denied
Achim Gottinger
achim at ag-web.biz
Fri Aug 15 14:10:58 MDT 2014
Am 15.08.2014 21:19, schrieb Achim Gottinger:
> Am 15.08.2014 21:13, schrieb Ryan Ashley:
>> root at fs01:~# getfacl /home/shared
>> getfacl: Removing leading '/' from absolute path names
>> # file: home/shared
>> # owner: reachfp
>> # group: domain\040admins
>> user::rwx
>> group::---
>> other::---
>>
> So this is 700 mode. What happens if you change it to 755
> chmod 755 /home/shared.
>
You need atleast the execution right on the preceding dirs /home and
/home/shared for group and others.
Check the permissions on the /home share.
It sould be atleast 711 on /home and /home/shared.
Tested it here and i also get access denied if an user has no execution
right on any of the preceding folders of the share.
>> I have not changed this since creation. It worked for a few weeks
>> this way.
>>
>> On 08/15/2014 02:53 PM, Achim Gottinger wrote:
>>>>>>>>> This is the ACL's from the share:
>>>>>>>>>
>>>>>>>>> getfacl /home/shared/staff/
>>>>>>>>> getfacl: Removing leading '/' from absolute path names
>>>>>>>>> # file: home/shared/staff/
>>>>>>>>> # owner: emily
>>>>>>>>> # group: administration
>>>>>>>>> user::rwx
>>>>>>>>> user:emily:rwx
>>>>>>>>> group::rwx
>>>>>>>>> group:administration:rwx
>>>>>>>>> group:domain_admins:rwx
>>>>>>>>> mask::rwx
>>>>>>>>> other::rwx
>>>>>>>>> default:user::rwx
>>>>>>>>> default:user:emily:rwx
>>>>>>>>> default:group::---
>>>>>>>>> default:group:administration:rwx
>>>>>>>>> default:group:domain_admins:rwx
>>>>>>>>> default:mask::rwx
>>>>>>>>> default:other::---
>>> What's the output of "getfacl /home/shared" ? In case this was not
>>> yet covered.
>>
>
More information about the samba
mailing list