[Samba] 4.4.14 on solaris, using ads, can't read/write as user
francis picabia
fpicabia at gmail.com
Thu Jun 29 19:28:38 UTC 2017
On Thu, Jun 29, 2017 at 3:48 PM, Rowland Penny via samba <
samba at lists.samba.org> wrote:
>
>
> Well, no it isn't actually on that page, you need to follow an
> hyperlink to this page:
>
> https://wiki.samba.org/index.php/Idmap_config_rid
>
>
It is really confusing. rid or tdb. I don't know what it wants because
the second link has both.
Here is the current config. It will allow a connection to homes or tmp,
but as usual I can't operate on 700 files or upload new files to the share
on Solaris. It can upload new files to the /tmp, as I've seen work before
as well.
[global]
realm = AD.MYDOM.CA
workgroup = MYDOM
log file = /var/log/samba/%m.log
max log size = 50
disable spoolss = Yes
load printers = No
printcap name = /dev/null
unix extensions = No
security = ADS
template homedir = /export/home/%U
template shell = /usr/bin/bash
winbind enum groups = Yes
winbind enum users = Yes
winbind use default domain = Yes
dns proxy = No
idmap config mydom: backend = rid
idmap config mydom: range = 100001-200000
nt acl support = No
[homes]
comment = Home Directories
path = %H
browseable = No
wide links = Yes
create mask = 0750
directory mask = 0750
read only = No
valid users = %U
[tmp]
path = /tmp
browseable = No
read only = No
Also tried this:
idmap config * : range = 80001-100000
idmap config mydom: backend = rid
idmap config mydom: range = 100001-200000
idmap config * : backend = tdb
No difference seen.
What is the Abracadabra?
Isn't it easier to compose the solution than send me more
links with "If no back end for local BUILTIN accounts and
groups on the domain member is configured", which means very little to me?
More information about the samba
mailing list