[Samba] Usiing SID's in Linux? Is it possible?
Gary Dale
garydale at torfree.net
Mon Feb 15 15:52:55 UTC 2016
On 15/02/16 10:33 AM, Jeff Sadowski wrote:
> I would like to be able to use SID's in linux so as to have ACL's identical
> to windows.
> Example usage why:
>
> Say I have an ntfs partitioned disk that I share with a co-worker that uses
> windows.
>
> Currently I am connected to the domain using rfc2307 and that allows me to
> authenticate using AD and on the nfs through the Isilon the windows users
> see files correctly permissioned but when I share an ntfs partitioned disk
> the ACL's are not correct.
The SID is made up from parts that include a domain id and a user id.
The NTFS partition files will have SIDs appropriate for the domain it
belongs to. Physically sharing with a user who is not part of that
domain would mean the user's computer had a different base SID.
See https://en.wikipedia.org/wiki/Security_Identifier for a good
discussion on the issue.
More information about the samba
mailing list