Owen Davies wrote:
I had a OpenSolaris server running basically as a fileserver for all my windows
machines. The CIFS server was running in WORKGROUP mode. I had several users
defined on the server to match my windows users. I had these users in a few
groups (the most important being Parents and Kids).
For various reasons I decided to blow away the OS and install fresh. First I exported the zpool holding my shared files. I then rebuilt the server, created the same users, granted the same group memberships and finally imported my zpool.
Unfortunately, the GIDs for the Parents and Kids groups must have been swapped
when I rebuilt because I found that the Kids had full control of everything and
Parents had read only access. What is the right way to correct this?
I tried editing the /etc/group file to swap the GIDs but this didn't seem to
have the effect I wanted. Now, when I view the ACLs with an ls -V from the
OSOL side I see that the Parents group has full permissions but from the
Windows side these folders show that HOMESERVER\Kids group has full control.
I know ZFS keeps the Windows style SIDs in the ACLs across export/import but
how am I supposed to get the users/groups I created during the rebuild to match
up with the old SIDs? Where is Windows getting a different idea of who that
group is that OSOL has? There is no Active Directory or other LDAP which could
have maintained a definition of those SIDs over the rebuild.
Thanks,
Owen Davies
How are the parent and kids defined in the /etc/passwd file?
What do the ACLs look like?
Issues with the CIFS server are best served by asking on
cifs-disc...@opensolaris.org
-Mark
_______________________________________________
zfs-discuss mailing list
zfs-discuss@opensolaris.org
http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
