[Samba] Can't create gpo with samba4.3 on FreeBSD and ZFS
Hannes Baxter
h.baxter at hotmail.com
Thu Feb 25 17:53:34 UTC 2016
I have samba 4.3 running on FreeBSD 10.2 on ZFS and I am unable to create new GPOs, getting "invalid Parameter" response.Log files indicate ACL issues. Domain was provisioned with --use-ntvfs option.Filesystem is mounted with this options:zroot/ROOT/default on / (zfs, local, noatime, nfsv4acls)
acl options on zfs are this:zroot/ROOT/default aclmode passthrough inherited from zrootzroot/ROOT/default aclinherit passthrough inherited from zroot
samba-tool ntacl sysvolcheck returns errors:
ERROR(<type 'exceptions.TypeError'>): uncaught exception - (87, 'Attribute not found') File "/usr/local/lib/python2.7/site-packages/samba/netcmd/__init__.py", line 175, in _run return self.run(*args, **kwargs) File "/usr/local/lib/python2.7/site-packages/samba/netcmd/ntacl.py", line 249, in run lp) File "/usr/local/lib/python2.7/site-packages/samba/provision/__init__.py", line 1733, in checksysvolacl direct_db_access) File "/usr/local/lib/python2.7/site-packages/samba/provision/__init__.py", line 1684, in check_gpos_acl domainsid, direct_db_access) File "/usr/local/lib/python2.7/site-packages/samba/provision/__init__.py", line 1645, in check_dir_acl direct_db_access=direct_db_access, service=SYSVOL_SERVICE) File "/usr/local/lib/python2.7/site-packages/samba/ntacls.py", line 73, in getntacl xattr.XATTR_NTACL_NAME)
samba-tool ntacl sysvolreset returns this:
ERROR(<class 'samba.provision.ProvisioningError'>): uncaught exception - ProvisioningError: Your filesystem or build does not support posix ACLs, which s3fs requires. Try the mounting the filesystem with the 'acl' option. File "/usr/local/lib/python2.7/site-packages/samba/netcmd/__init__.py", line 175, in _run return self.run(*args, **kwargs) File "/usr/local/lib/python2.7/site-packages/samba/netcmd/ntacl.py", line 218, in run lp, use_ntvfs=use_ntvfs) File "/usr/local/lib/python2.7/site-packages/samba/provision/__init__.py", line 1558, in setsysvolacl raise ProvisioningError("Your filesystem or build does not support posix ACLs, which s3fs requires. "
samba-tool ntacl get /var/db/samba4/sysvol/xxx/Policies/\{31B2F340-016D-11D2-945F-00C04FB984F9}/seems to work
Any suggestions?
More information about the samba
mailing list