[Samba] Permissions problem with 1 user

James B. Byrne byrnejb at harte-lyne.ca
Thu Mar 16 18:30:09 UTC 2017

On Wed, March 15, 2017 22:31, Andrew Walker wrote:
> What does your smb.conf look like? Are you using ACLs? If so, post
> 'getfacl' output for the problem directory (ie 'getfacl
> /mnt/tank/foo').

Thank you for your reply.  Here is the requested information.

getfacl /var/samba4/BROCKLEY-2016/PROFILES/byrnej.V2
# file: /var/samba4/BROCKLEY-2016/PROFILES/byrnej.V2
# owner: BROCKLEY-2016\byrnej
# group: BROCKLEY-2016\domain admins
group:BROCKLEY-2016\domain admins:---

cat /usr/local/etc/smb4.conf
# Global parameters
        workgroup = BROCKLEY-2016
        realm = BROCKLEY-2016.HARTE-LYNE.CA
        netbios name = SAMBA-01
        server role = active directory domain controller
        dns forwarder =
        idmap_ldb:use rfc2307 = yes
        # Temp fix for roaming profiles? oplock
        veto oplock files = /NTUSER.DAT/
        veto oplock files = /ntuser.ini/

  socket options = TCP_NODELAY SO_KEEPALIVE

        path = /var/db/samba4/sysvol/brockley-2016.harte-lyne.ca/scripts
        read only = No

        path = /var/db/samba4/sysvol
        read only = No

        path = /var/samba4/BROCKLEY-2016/PROFILES/
        read only = No

        path = /var/samba4/BROCKLEY-2016/USERS/
        read only = No

The getfacl output from my profile is not visibly different from any
other user's profile saving only the user name of the OWNER.

***          e-Mail is NOT a SECURE channel          ***
        Do NOT transmit sensitive data via e-Mail
 Do NOT open attachments nor follow links sent by e-Mail

James B. Byrne                mailto:ByrneJB at Harte-Lyne.ca
Harte & Lyne Limited          http://www.harte-lyne.ca
9 Brockley Drive              vox: +1 905 561 1241
Hamilton, Ontario             fax: +1 905 561 0757
Canada  L8E 3C3

More information about the samba mailing list