Samba on AIX, issues setting read-only flag on files?
Hello,
I am having issues setting the "read-only" flag via Windows Explorer on my AIX Samba share...
I have on my AIX 7.1 system installed Samba 3.6.24 and configured, joined to our Windows domain successfully.
The samba binaries I got from perzl.org/aix
In my smb.conf I have...
Code:
[global]
workgroup = WEST
realm = west.mydomain.com
netbios name = van-xxxx
server string =
load printers = no
admin users = "VANXX\Administrator"
log level = 3
log file = /var/log/samba/%m.log
max log size = 50
security = ADS
password server = dc01.west.mydomain.com, dc02.west.mydomain.com
encrypt passwords = yes
guest ok = no
auth methods = winbind
socket options = TCP_NODELAY
interfaces = 172.xxx.xxx.xxx/22
bind interfaces only = yes
local master = no
os level = 33
domain master = no
preferred master = no
wins support = no
wins server = xxx.xxx.xxx.xxx
wins proxy = no
dns proxy = no
idmap uid = 5000-10000000
idmap gid = 5000-10000000
template homedir = /home/%U
template shell = /bin/bash
winbind use default domain = Yes
winbind nested groups = Yes
client use spnego = yes
client signing = yes
[usr3]
comment = usr3
path = /usr3
read only = No
inherit permissions = Yes
nt acl support = Yes
printable = No
guest ok = No
veto oplock files = /*.log/
Inside /usr3 I have a folder..
Quote:
drwxrwxrwx 17 root system 12288 Mar 30 11:23 appsrv
Inside the appsrv folder I have a file..
Quote:
-r-xr--r-- 1 rober usr 111 Mar 30 10:50 BradTest.p
On my Windows 7 machine I can browse to \\van-xxxxx\usr3 and I can go inside the appsrv directory and open/edit the BradTest.p file, and create other files in this directory, etc...
I am debugging with a single file named "BradTest.p", its permissions are as follows...
The BradTest.p file is owned by another user "rober", which is an Active Directory user-id.
If I login to a Windows 7 machine as "rober" I can browse to the above file and set the read-only flag. If I login to the Windows 7 computer as another user such as "mirte", I can edit the file but I cannot change the read-only flag I get an access denied error message.
Both users belong to the "usr" group, so why can't I logged in as mirte change the read-only flag on the file owned by rober? I can "chown mirte BradTest.p" and then i can modify the read-only flag.
If logged into the computer as "mirte" and creating a dummy file called "testing'txt" in the Samba share, we can see the AD to UNIX userid mapping are working fine because the file created is owned by my user-id and the "usr" group...
What I need to be able to do is as another developer check out a file by setting a read-only flag on it even if it is not owned by me, this previously worked for us prior to migrating to a newer system with a newer samba build (old system had samba 3.5.8, new system has 3.6.24).
I am stumped as to how I could resolve this.. anyone able to point me to the right direction?
---------- Post updated at 04:32 PM ---------- Previous update was at 01:45 PM ----------
I have also made sure the unix "usr" group maps to the "Domain Users" group in AD..
Code:
# net groupmap add ntgroup="Domain Users" unixgroup=usr rid=513 type=d
Successfully added group Domain Users to the mapping db as a domain group
# net groupmap list
Domain Users (S-1-5-21-2513559049-4070760301-2340907117-513) -> usr
---------- Post updated 03-31-15 at 07:31 AM ---------- Previous update was 03-30-15 at 04:32 PM ----------
Here is also the log from Samba with logging level 3.
Both users belong to the "usr" group, so why can't I logged in as mirte change the read-only flag on the file owned by rober? I can "chown mirte BradTest.p" and then i can modify the read-only flag.
Being in the right group allows you to modify the file, assuming group r/w are set. You still have to be the owner to do things like chmod and chown. This is a property of UNIX permissions, not Samba specifically.
I am running AIX 7.1 and currently we have samba 3.6.25 installed on the server. As it stands some AIX folders are shared that can be accessed by certain Windows users.
The problem is that since Windows 10 the guest feature no longer works so users have to manually type in their Windows login/pwd... (14 Replies)
Hi. Ive recently upgraded Samba on an AIX server to Samba 4. The aim is to allow a specific group of Windows AD users to access some AIX file shares (with no requirement to enter passwords) - using AD to authenticate.
Currently I have:
Samba 4 installed ( and 3 daemons running)
Installed... (1 Reply)
I am using xlC (Version: 11.01.0000.0011).
While build i am using "-g" to have debug information in build.
there are many object files (>500) due to which resultant shared file (.so) will have huge size.
I can't reduce optimization level.
Is there any way or flag is present by using which i... (2 Replies)
Hi,
I am trying to set-up a samba server at my red-hat machine in order to be accessed via windows, below are my current configuration
Linux IP : 192.168.1.6
Windows IP : 192.168.1.2
-- I am able to ping from windows to linux machine :
Pinging 192.168.1.6 with 32 bytes of data:
Reply... (2 Replies)
do
case $option in
d ) CHEC=true;;
# more option processing can go here
\? ) echo "Unknown option: -$OPTARG"
: ) echo "Missing option argument for -$OPTARG";;
* ) echo "Unimplimented option: -$OPTARG";;
esac
done
shift $(($OPTIND - 1)) (2 Replies)
Hi unix gurus....
i need to set a flag inside awk. i tried many methods for that but couldn't succeed :(
like
echo "flag= " $flag
echo "flag= " ${flag}
and so...but not able to show the flag. help me out.
i'm using a if condition inside awk... help me out with correct syntax to set a... (7 Replies)
Hello folks;
i have Linux CentOS server that is already on my corporate domain and I'm trying to configure Samba so i can browse or see it from my Windows machine. i followed a lot of threads but still can't login when trying to map a drive.
Is there a way to setup Samba on that server (with... (2 Replies)
Hello.
We have 2 HP-UX machines in the same Domain with SAMBA installed and configured.
The problem is:
From my Windows PC when i try to reach "machine1" by using UNC:
\\machine1
I receive the window with all folders available :b:
From the same PC when i try to reach "mcahine2" by using... (0 Replies)
Hello All,
I am facing a wierd problem with the Samba 3.0.14a on Solaris 10 and CUPS (1.1.12) printing.
First of all am not sure if this combination works well. If someone could throw some light, it would be of great help.
Samba is setup with security=server, and it is currently a member of... (0 Replies)
Hi all
I want to know how do I create a print queue using samba on AIX enviroment to print to file. Setup step require. Anyone please help me on this.
Vincent (2 Replies)