Solved

SAMBA 3 + ACLs: Different access rights in Linux and Windows

Posted on 2011-03-17
2
634 Views
Last Modified: 2012-08-13
Dear Experts,

just an understanding question. I have a SAMBA share with the following ACL settings:

getfacl /share

# file: share
# owner: root
# group: root
user::rwx
group::rwx
group:mygroup1:rwx
group:mygroup2:r-x
mask::rwx
other::r-x

Open in new window


I'm not able to create/edit files on the Linux (Samba) server as a member of mygroup2:

touch test.file

touch: cannot touch `test.file': Permission denied

Open in new window


Logged on a Windows 2008 Server I see the same access rights like on the Linux server, but I can create files. Is it a correct behavior for the following configuration? My aim was to give the mygroup2 just a read access

[share]
        comment = share
        path = /share
        valid users = @mygroup1, @mygroup2
        force group = mygroupe1
        force create mode = 0770
        force directory mode = 0770
        read only = No
        inherit acls = Yes

Open in new window


Thank you in advance!
0
Comment
Question by:atyur
2 Comments
 
LVL 2

Accepted Solution

by:
silvanx earned 250 total points
Comment Utility
How about changing
force group = mygroupe1

Open in new window

to
force group = +mygroup2

Open in new window


This should force access level of mygroup2 for its members and default access to everybody else.
0
 

Author Closing Comment

by:atyur
Comment Utility
Yes, you're right. Thank you!
0

Featured Post

New My Cloud Pro Series - organize everything!

With space to keep virtually everything, the My Cloud Pro Series offers your team the network storage to edit, save and share production files from anywhere with an internet connection. Compatible with both Mac and PC, you're able to protect your content regardless of OS.

Join & Write a Comment

Suggested Solutions

Are you one of those front-line IT Service Desk staff fielding calls, replying to emails, all-the-while working to resolve end-user technological nightmares? I am! That's why I have put together this brief overview of tools and techniques I use in o…
Trying to figure out group policy inheritance and which settings apply where can be a chore.  Here's a very simple summary I've written which might help.  Keep in mind, this is just a high-level conceptual overview where I try to avoid getting bogge…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now