Zentyal Forum, Linux Small Business Server
Zentyal Server => Directory and Authentication => Topic started by: tekvizyon on February 10, 2020, 11:56:48 am
-
Hi
I want to share files, but for the folder to be shared
When I check folder privileges with getfacl, 134 is added before my user name.
user: ahmet
getfacl
user: domain \ 134ahmet
I installed the system on different machines 3 times, but the result did not change.
I cannot access the folders that share the domain, you are not authorized.
-
please help me
-
Have you started by setting up a basic share on Zentyal under File Sharing menu and giving it reasonable permissions, say "Read and Write" for "Domain Users"?
Can you access that basic share?
-
:)
These values are correct (see here my own values for the share "eriador"):
root@pusa:~# ls -l /home/samba/shares/
total 8
drwxrwx---+ 2 TIERRAMEDIA\administrator adm 4096 feb 11 17:42 eriador
root@pusa:~# ls -l /home/samba/shares/
total 8
drwxrwx---+ 2 TIERRAMEDIA\administrator adm 4096 feb 11 17:42 eriador
root@pusa:~# getfacl /home/samba/shares/eriador
getfacl: Removing leading '/' from absolute path names
# file: home/samba/shares/eriador
# owner: TIERRAMEDIA\134administrator
# group: adm
user::rwx
user:TIERRAMEDIA\134administrator:rwx
user:TIERRAMEDIA\134gimli:rwx
user:TIERRAMEDIA\134elrohir:rwx
user:TIERRAMEDIA\134elladan:rwx
group::rwx
group:adm:rwx
group:TIERRAMEDIA\134domain\040admins:rwx
mask::rwx
other::---
default:user::rwx
default:user:TIERRAMEDIA\134administrator:rwx
default:user:TIERRAMEDIA\134gimli:rwx
default:user:TIERRAMEDIA\134elrohir:rwx
default:user:TIERRAMEDIA\134elladan:rwx
default:group::rwx
default:group:adm:rwx
default:group:TIERRAMEDIA\134domain\040admins:rwx
default:mask::rwx
default:other::---
You can see the configuration that has effectively your share this way:
root@pusa:~# cat /etc/samba/shares.conf
[homes]
comment = Home Directories
path = /home/%S
read only = no
browseable = no
create mask = 0611
directory mask = 0711
vfs objects = acl_xattr
full_audit:success = connect opendir disconnect unlink mkdir rmdir open rename
full_audit:failure = connect opendir disconnect unlink mkdir rmdir open rename
# Shares
[eriador]
path = /home/samba/shares/eriador
browseable = yes
force create mode = 0660
force directory mode = 0660
valid users = "gimli", "elladan", "elrohir", "gimli"
read list =
write list = "gimli", "elladan", "elrohir"
admin users = "gimli"
vfs objects = acl_xattr
full_audit:failure = connect opendir disconnect unlink mkdir rmdir open rename
You have to use the acl's system of the Zentyal webadmin to grant access to the users or groups you need:
(https://i.ibb.co/3WK7FY1/Captura-de-pantalla-2020-02-12-14-35-17.png)
The options you chose in the previous screenshot manages the shares.conf file I showed you before. Try to grant access to the share to some user or group instead of the global domain users group.
Tell us if this fixes your problem.
Cheers!