[Samba] unix_primary_group = yes don t work

Rowland Penny rpenny at samba.org
Wed Feb 6 16:01:49 UTC 2019 

On Wed, 6 Feb 2019 16:40:42 +0100
"L.P.H. van Belle via samba" <samba at lists.samba.org> wrote:

> 
> > -----Oorspronkelijk bericht-----
> > Van: samba [mailto:samba-bounces at lists.samba.org] Namens 
> > Rowland Penny via samba
> > Verzonden: woensdag 6 februari 2019 16:33
> > Aan: samba at lists.samba.org
> > Onderwerp: Re: [Samba] unix_primary_group = yes don t work
> > 
> > On Wed, 6 Feb 2019 15:58:52 +0100
> > L.P.H. van Belle <belle at bazuin.nl> wrote:
> > 
> > > Hai Rowland, 
> > > 
> > > Thats strange.. my test shows different things. 
> > > 
> > > A SSH login, SSO/kerberos on domain member with nfsv4 kerberized
> > > mounted homedir. Tested samba 4.8.8 and 4.9.4 (members) 
> > > 
> > > touch test-for-Rowland
> > > -rw-r-----   1 louis domain users        0 Feb  6 15:42
> > > test-for-Rowland
> > > 
> > > And i copied this from my w10 pc. 
> > > -rwxrwx---   1 louis domain users        0 Feb  6 15:42
> > > test-for-Rowland - kopie
> > > 
> > > And a new txt file made from my pc
> > > -rwxrwx---   1 louis domain users        0 Feb  6 15:45 Nieuw
> > > tekstdocument for Rowland.txt 
> > > 
> > > 
> > 
> > I tested from win10 and got this:
> > 
> > root at testsmb:~# ls -la /home/data
> > total 16
> > drwxrwxrwx  2 root    root         4096 Feb  6 15:17 .
> > drwxr-xr-x  5 root    root         4096 Feb  6 13:42 ..
> > -rwxrwxr-x+ 1 giduser domain users    0 Feb  6 13:48 test.txt
> > -rwxrwxr-x+ 1 giduser domain users    0 Feb  6 15:17 wintest.txt
> 
> > root at testsmb:~# ls -la /home/giduser/test.txt 
> > -rw-r--r-- 1 giduser unixgroup 0 Feb  6 14:31 /home/giduser/test.txt
> 
> > root at testsmb:~# getent passwd giduser
> > giduser:*:10048:10002::/home/giduser:/bin/bash
> 
> > root at testsmb:~# id giduser
> > uid=10048(giduser) gid=10002(unixgroup) 
> > groups=10002(unixgroup),10000(domain users),3001(BUILTIN\users)
> 
> > 
> > Use Unix tools and the Unix primary group is honoured, use
> > Samba/Windows and it isn't.
> 
> My guess here. 
> That is because of misconfiguration of the base of the users homedir
> 
> You need 1700 or 3700 on /home/data  
> Can you try that. 

OK, tried that, it locked me out until I used setfacl, same result,
adding a file used the Windows primary group.

Rowland

More information about the samba mailing list