On Windows, TESTDOMAIN\sichler owns the file but on the server this is being mapped to 2147483651 (an ephemeral ID), which is not a problem per se but I suspect you want something different - probably that the file is owned by the user who maps the file from the OpenSolaris client.
You could create an ID mapping between your UNIX users/groups and your Windows users/groups (see idmap (1M)) and/or you could set up the ACL such that the ownership doesn't matter (perhaps using the Domain Users or Everyone group). If you intend to use Windows a lot, I'd recommend that you manage the ACLs from Windows so that security inheritance works as you'd expect from Windows - it's easier. I'd start by setting the ACL on the root directory to Everyone: FullControl and apply it recursively to everything within the dataset. This will give you a baseline then you can you can change things to be the way you want. Alan -- Michael Sichler wrote:
Permissions from the SECE file server: -rwxrwxrwx+ 1 2147483651 2147483656 128 Aug 11 16:48 file1 group:2147483656:rwxp---------s:-------:allow everyone@:rwxp--a-R-c--s:-------:allow user:2147483651:rwxp---A-W-Cos:-------:allow group:2147483656:rwxpdDaARWcCos:------I:allow group:2147483650:r-x---a-R-c--s:------I:allow user:2147483651:rwxpdDaARWcCos:------I:allow Permissions from the OpenSolaris Client -rwx------ 1 root root 128 Aug 11 16:48 file1 owner@:--------------:-------:deny owner@:rwxp---A-W-Co-:-------:allow group@:rwxp----------:-------:deny group@:--------------:-------:allow everyone@:rwxp---A-W-Co-:-------:deny everyone@:------a-R-c--s:-------:allow Permissions from the Windows Client Y:\tmp\file1 TESTDOMAIN\Domain Admins:(special access:) SYNCHRONIZE FILE_READ_DATA FILE_WRITE_DATA FILE_APPEND_DATA FILE_EXECUTE Everyone:(special access:) READ_CONTROL SYNCHRONIZE FILE_GENERIC_READ FILE_GENERIC_EXECUTE FILE_READ_DATA FILE_WRITE_DATA FILE_APPEND_DATA FILE_READ_EA FILE_EXECUTE FILE_READ_ATTRIBUTES TESTDOMAIN\sichler:(special access:) WRITE_DAC WRITE_OWNER SYNCHRONIZE FILE_READ_DATA FILE_WRITE_DATA FILE_APPEND_DATA FILE_WRITE_EA FILE_EXECUTE FILE_WRITE_ATTRIBUTES TESTDOMAIN\Domain Admins:F TESTDOMAIN\Domain Users:R TESTDOMAIN\sichler:F
_______________________________________________ cifs-discuss mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/cifs-discuss
