[Samba] ACL-Reset necessary after working on GPO

Tim lists at kiuni.de
Mon Feb 9 06:56:35 MST 2015


I don't really know why but after working on a GPO it is necessary to reset
sysvol acls on the DC. I have no idea.

Can you point me to a hint where I could have a look at? I use SerNet packages
if it's important to know. It's v4.1.16.

# Global parameters
        workgroup = SUBDOM
        realm = SUBDOM.DOM.INTERN
        netbios name = DC01
        server role = active directory domain controller
        dns forwarder =
        idmap_ldb:use rfc2307 = yes

        bind interfaces only = yes
        interfaces = lo enp2s0f0

#orig   server max protocol = NT1
#orig   server min protocol = CORE
        server max protocol = SMB3
        server min protocol = SMB2
        client max protocol = SMB3
        client min protocol = SMB2
#orig   server signing = default
#       server signing = mandatory

        winbind nss info = rfc2307

        path = /var/lib/samba/sysvol/subdom.dom.intern/scripts
        read only = No

        path = /var/lib/samba/sysvol
        read only = No

Thanks in advance

More information about the samba mailing list