[Samba] permission denied with windows acls

Rowland Penny rpenny at samba.org
Sun Jan 28 17:27:32 UTC 2024


On Sun, 28 Jan 2024 08:47:28 -0800
Peter Carlson via samba <samba at lists.samba.org> wrote:

> 
> On 1/27/24 03:19, Rowland Penny via samba wrote:
> >
> > You are close, but are missing a parameter, try opening a terminal
> > on u2gui (which I take it is the hostname for the domain joined
> > client you are trying to mount the share to). Then type this:
> >
> > sudo mount -t cifs //fs.carlson.lab/test /mnt/test -o
> > sec=krb5,username=U2GUI$,multiuser
> >
> > Now go and look at /mnt/test
> >
> > Rowland
> >
> I am still getting permission denied.  Does the machine need a user 
> account? I thought that with multiuser it just needed a computer
> account

It does just need a computer account and a computer account is just a
user account with an extra objectclass.
> 
>     root at u2gui:~# mount -t cifs //fs1.carlson.lab/test /mnt/test -o
>     sec=krb5,username=U2GUI$,multiuser
>     mount error(13): Permission denied
>     Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and
>     kernel log messages (dmesg)
> 

Hmm, it works for myself:

rowland at testdm12:~$ ls /mnt/test
rowland at testdm12:~$ 
rowland at testdm12:~$ sudo mount -t cifs //devstation.samdom.example.com/data /mnt/test -o sec=krb5,username=TESTDM12$,multiuser
rowland at testdm12:~$ ls /mnt/test
guest.txt  smbtest  test.txt
rowland at testdm12:~$ 

testdm12 is the client and is joined to the domain, devstation is the
server.
The client is also an Oracle virtualbox VM running Debian bookworm and
I had to restart it to retest and it just worked. 

Both are using the 'rid' backend (if that makes any difference)

I wonder what the difference between my setup and yours is ??

Rowland



More information about the samba mailing list