Sorry for the top post. If I only wanted to use ACLs to control access, and not Samba as indicated in my OP, should I use "security = share" mode?
Thanks. -----Original Message----- From: TAKAHASHI Motonobu [mailto:[email protected]] Sent: Sunday, December 09, 2012 2:20 AM To: Baird, Josh Cc: [email protected] Subject: Re: [Samba] Samba Permissions From: "Baird, Josh" <[email protected]> Date: Fri, 7 Dec 2012 20:58:22 +0000 > I thought I had this working correctly, but sometimes it randomly breaks. > Here is an example of a share's configuration: > > [testshare] > comment = Test Share > path = /test/testshare > writeable = yes > create mask = 770 > directory mask = 770 You may want to add "force group = DOMAIN\testgroup". > if the share's directory has the following permissions: > > drwxrwx--- 2 root DOMAIN\testgroup 4096 Dec 7 14:54 testshare > > Then, anyone in the "DOMAIN\testgroup" should have read/write access > to the share, correct? Basically yes. In my env, those settings work correctly. DOMAIN\testuser, a member of DOMAIN\testgroup can write to the share. The owner group of written file is "DOMAIN\domain users", testuser's primary group. --- TAKAHASHI Motononu <[email protected]> -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
