[Samba] Problem mapping extended acls with sssd and samba
edson
edeaoinfor at gmail.com
Sun Mar 19 20:09:32 UTC 2017
Hello.
I have a file server with samba and sssd. Is working perfectly.
The problem is when I define extended ACLs using windows explorer. Acls are
not applied in the file system to the groups and users of the domain.
But when I work with winbind I can apply the extended acls in the file
system.
Follow the contents of the sssd.conf and smb.conf file
[global]
WORKGROUP = DOMAINE
Realm = DOMAINA.COM
Netbios name = FILESERVER
Dedicated keytab file = /etc/krb5.keytab
Kerberos method = dedicated keytab
Security = ads
Log level = 3
Log file = /var/log/samba/log.all
Max log size = 4000
Domain master = no
Local master = no
# Enable Extended ACLs #
Map acl inherit = yes
Store dos attributes = yes
Vfs objects = acl_xattr
[rh]
Path = / mnt / samba / rh
; Valid users = manuel at coorp.gnulinux souza at coorp.gnulinux
Write list = @ "rh at coorp.gnulinux" @ "diretoria at coorp.gnulinux" @
"vendas at coorp.gnulinux"
[Sssd]
Domains = domaina.com
Config_file_version = 2
Services = nss, pam
[Domain / domaina.com]
Ad_domain = domaina.com
Krb5_realm = COORP.GNULINUX
Realmd_tags = manages-system joined-with-samba
Cache_credentials = True
Id_provider = ad
Krb5_store_password_if_offline = True
Default_shell = / bin / bash
Ldap_id_mapping = True
Use_fully_qualified_names = True
Fallback_homedir = / home /% u @% d
Access_provider = ad
Why does it happen ?
Can someone please help me?
--
Att,
Edson Oliveira
More information about the samba
mailing list