On Mar 21, 2008, at 3:34 PM, Nicolas Williams wrote: > On Fri, Mar 21, 2008 at 11:18:38AM -0800, Natalie Li wrote: >>> 'idmap dump' shows my SID after I connect to the share for the first >>> time with an entry in the log that says: >>> >>> >> What idmap rules have you defined? > > All what Natalie said is right, but I just want to point out that: > a) in > your chmod command line you should use the UID or GID shown by > idmap, b) > you don't need any mapping rules if your Windows users/groups don't > have > equivalents in your Unix namespace.
PERFECT! I got it by doing: #chmod 777 /zpool/winshare #chmod A=everyone@:rwxpdDaARWcCos:fd:deny /zpool/winshare #chmod A+user:123456789:rwxpdDaARWcCos:fd:allow /zpool/winshare #chmod A+user:123456790:rwxpdDaARWcCos:fd:allow /zpool/winshare #chmod A+user:123456791:rwxpdDaARWcCos:fd:allow /zpool/winshare Any user that doesnt have that id map showing in 'idmap dump -n' cannot even browse the share and the users that are explicitly added afterwards are having complete control of it. now I'm going to start seeing how SQL server likes using this CIFS for storing backup devices :) > > > Nico > -- Thanks for the pointers, -Andy _______________________________________________ storage-discuss mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/storage-discuss
