ads711
asked on
osx remote computer permissions
we have a macpro machine which we use for data storage. The admin user is 'alain' but there are several other users (like 'stevenbeel') that can administrate (in group 'admins') the computer by smb (add/delete/modify folders and files in Finder).
When we create a new folder as one user (e.g. 'stevenbeel') then we do not have permissions to write or edit files in it as another admin user except for that user 'alain'.
(in attachment a screenshot of a directory (directory 'zero2') in which some admin users cannot write. You'll see at the end of the permissions there is a '+'. When that '+' is there, all admin users have all permssions to the directory.
How can other admin users create folders that immediately have all permissions set for all admin users?
Schermafbeelding-2010-09-22-om-1.jpg
When we create a new folder as one user (e.g. 'stevenbeel') then we do not have permissions to write or edit files in it as another admin user except for that user 'alain'.
(in attachment a screenshot of a directory (directory 'zero2') in which some admin users cannot write. You'll see at the end of the permissions there is a '+'. When that '+' is there, all admin users have all permssions to the directory.
How can other admin users create folders that immediately have all permissions set for all admin users?
Schermafbeelding-2010-09-22-om-1.jpg
ASKER
now the permissions seem ok, but cannot copy files to subdirectories (no permissions) as another admin user.
Schermafbeelding-2010-09-22-om-1.jpg
Schermafbeelding-2010-09-22-om-1.jpg
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
pretty sure this can be solved with proper unmask handling, read those articles:
http://www.lifeaftercoffee.com/2007/03/07/setting-default-permissions-using-a-file-mask/
http://www.psc.edu/general/unix/umask.php
and a bit more detailed here:
http://www.cyberciti.biz/tips/understanding-linux-unix-umask-value-usage.html
http://www.lifeaftercoffee.com/2007/03/07/setting-default-permissions-using-a-file-mask/
http://www.psc.edu/general/unix/umask.php
and a bit more detailed here:
http://www.cyberciti.biz/tips/understanding-linux-unix-umask-value-usage.html
ASKER
solved partially myself
You can change the permissions on the parent directory so that admin users can write directories and files, and make these permissions inherited to subdirectories.
You can check the extended attributes using "ls -le", and you can change them using chmod. Check the man page for chmod. The command you want is something like
chmod +ai "admin allow read,write,delete,add_subd
but your requirements may differ, so read the man page.