[Samba] Usiing SID's in Linux? Is it possible?

Gary Dale garydale at torfree.net
Mon Feb 15 15:52:55 UTC 2016

On 15/02/16 10:33 AM, Jeff Sadowski wrote:
> I would like to be able to use SID's in linux so as to have ACL's identical
> to windows.
> Example usage why:
> Say I have an ntfs partitioned disk that I share with a co-worker that uses
> windows.
> Currently I am connected to the domain using rfc2307 and that allows me to
> authenticate using AD and on the nfs through the Isilon the windows users
> see files correctly permissioned but when I share an ntfs partitioned disk
> the ACL's are not correct.

The SID is made up from parts that include a domain id and a user id. 
The NTFS partition files will have SIDs appropriate for the domain it 
belongs to. Physically sharing with a user who is not part of that 
domain would mean the user's computer had a different base SID.

See https://en.wikipedia.org/wiki/Security_Identifier for a good 
discussion on the issue.

More information about the samba mailing list