?
Solved

XServe - permissions and ACL questions

Posted on 2006-11-07
1
Medium Priority
?
1,182 Views
Last Modified: 2008-02-07
I have an Xserve (running OS X Server 10.4.8) that only 4 macs and 2 PCs access.

The only services running on it are AFP Service and Windows Service (no e-mail, ftp, etc)

I tried integrating it with Active Directory on my Windows 2003 domain and failed miserably.

Then I decided since it’s just a file server I would make 4 user accounts, assign the same password that the 4 mac users have on their G5 workstations, and use Access Control Lists.

A few things:
1. Each time I start Workgroup Manager I get a warning "You are working in a directory node that is not visible to the network". What does this mean?

2. I made each user a member of a group (called "prepress") and then in the Access Control List, set "prepress" to "Allow | Full Control". I assumed this would do away with any permissions problems - I want all 4 users to have full read/write access to ALL files on the server. Unfortunately I could not get ACL to work. I thought it was as simple as setting "prepress" to "Full Control" but we still ran into problems where one user copied a job folder to the server, and then another user tried to access it but did not have permission.

Then I noticed the ultimate hack - from the Xserve, highlight the hard drive and press 'command-I' (get info) and check the little box at the bottom that says 'Ignore file permissions on this drive' (or something to that effect). After checking that box, it goes away, so I wouldn’t know how to turn it off if I needed to

3. We have an issue where one user copies a folder to the server - the folder contains quark or indesign files, artwork, and fonts. Another user is able to open the folder but the icons are all generic, and the fonts are unusable. What causes this to happen?

4. And one minor gripe ... sharing a server is not fun, because one user will open the folder, resize it and reposition it. Now another user opens that folder and it remembers the way the other user positioned the window. So he changes it, and that ticks off the next person that opens the folder. Etc etc. Is there any way for the Admin to set the window size and position and have it stay that way so that even if someone moves that folder, it is back in the default position when it is opened again?


Thank you!!


0
Comment
Question by:ecarbone
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 12

Accepted Solution

by:
benhanson earned 2000 total points
ID: 17970890
1. "You are working in a directory node that is not visible to the network", I think this means you are looking at the local directory info on the server, so user accounts and what-not are just user accounts as opposed to Open Directory accounts.

2. Given the error noted in issue #1, your ACL's might not matter if people aren't logging in with network accounts.  If you don't set up Open Directory based accounts, then the passwords on the server accounts need to match the local accounts on the workstations.  When you check the "Ignore file permissions" box, you are basically turning off all security on the drive.  No ACL is checked, everyone has full control.  If that's what you want, that's what it does.

3. Do all of the users have Quark and InDesign installed?  If a user doesn't have the app installed, it will show a generic icon.

4.  See this hint to prevent writing of .DS_Store files to network volumes.  This will mean that the folder doesn't remember window position for anyone, but I don't think you can have your cake . . . in this particular situation.  http://www.macosxhints.com/article.php?story=2005070300463515
0

Featured Post

Enroll in August's Course of the Month

August's CompTIA IT Fundamentals course includes 19 hours of basic computer principle modules and prepares you for the certification exam. It's free for Premium Members, Team Accounts, and Qualified Experts!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

SUMMARY Enterprise backup in a heterogeneous network is a subject full of complications and restrictions. Issues such as filename & path structure, attributes and extended metadata always tend to complicate the subject to the extent where either …
Worried about if Apple can protect your documents, photos, and everything else that gets stored in iCloud? Read on to find out what Apple really uses to make things secure.
Add bar graphs to Access queries using Unicode block characters. Graphs appear on every record in the color you want. Give life to numbers. Hopes this gives you ideas on visualizing your data in new ways ~ Create a calculated field in a query: …
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…
Suggested Courses

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question