I had a OpenSolaris server running basically as a fileserver for all my windows 
machines.  The CIFS server was running in WORKGROUP mode.  I had several users 
defined on the server to match my windows users.  I had these users in a few 
groups (the most important being Parents and Kids).

For various reasons I decided to blow away the OS and install fresh.  First I 
exported the zpool holding my shared files.  I then rebuilt the server, created 
the same users, granted the same group memberships and finally imported my 
zpool.  

Unfortunately, the GIDs for the Parents and Kids groups must have been swapped 
when I rebuilt because I found that the Kids had full control of everything and 
Parents had read only access.  What is the right way to correct this?

I tried editing the /etc/group file to swap the GIDs but this didn't seem to 
have the effect I wanted.  Now, when I view the ACLs with an ls -V from the 
OSOL side I see that the Parents group has full permissions but from the 
Windows side these folders show that HOMESERVER\Kids group has full control.

I know ZFS keeps the Windows style SIDs in the ACLs across export/import but 
how am I supposed to get the users/groups I created during the rebuild to match 
up with the old SIDs?  Where is Windows getting a different idea of who that 
group is that OSOL has?  There is no Active Directory or other LDAP which could 
have maintained a definition of those SIDs over the rebuild.

Thanks,
Owen Davies
-- 
This message posted from opensolaris.org
_______________________________________________
zfs-discuss mailing list
zfs-discuss@opensolaris.org
http://mail.opensolaris.org/mailman/listinfo/zfs-discuss

Reply via email to