[Samba] ACL SHARE

L.P.H. van Belle belle at bazuin.nl
Tue Jun 27 19:55:15 UTC 2017 

But thats easy scriptable. ;-)
I have my scripts always ready for that. 
This is why i run samba in AD mode and not RID. 

If you compair the AD backend disavantage
Disadvantages: 
If the Windows Active Directory Users and Computers (ADUC) program is not used, you have to manual track ID values to avoid duplicates.
The values for the RFC2307 attributes must be set manually.

To RID
Disadvantages: 
>> File ownership of domain users and groups are lost, when the local ID mapping database corrupts. << is ow so nasty. 
All users on the domain member get the same login shell and home directory base path assigned.
User and group IDs are only the same on other domain members using the rid back end, if the same ID ranges are configured for the domain.
All accounts and groups are automatically available on the domain member and individual entries cannot be excluded.
Not recommended for multi-domain environments because objects in different domains having the same relative identifier (RID) get the same ID assigned.

And managing the uid/gids from win7 RSAT tools is fine for me. 

But thats my opinion. 

RID.. Fine for home or a office server without shares or shared home folders or guest shares.
But you main document server, always for AD for me. 
It happend to me one.. 9 years ago. Arg .. At that point i also didnt have nice scripts.. 
A night work.. :-/ 


Greetz, 

Louis



> -----Oorspronkelijk bericht-----
> Van: samba [mailto:samba-bounces at lists.samba.org] Namens 
> Rowland Penny via samba
> Verzonden: dinsdag 27 juni 2017 18:21
> Aan: samba at lists.samba.org
> Onderwerp: Re: [Samba] ACL SHARE
> 
> On Tue, 27 Jun 2017 13:03:33 -0300
> "Carlos A. P. Cunha via samba" <samba at lists.samba.org> wrote:
> 
> > Hello
> > You're right. Configuration are correct, there is no middle 
> ground :-D 
> > But do I change these settings, I will not have problems with IDS 
> > changes, and soon problems with permissions (since I 
> changed ids) of 
> > the users?
> > Or other problems changing it?
> > 
> > 
> 
> Well, you are having problems now, but yes, when you set up 
> smb.conf, you will need to fix ownership of any files and dirs.
> This should be the only problem you will have (famous last words LOL)
> 
> Rowland
> 
> 
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>

More information about the samba mailing list