Tranquil IT Forum

Contact us
at https://forum.tranquil.it/

[SOLVED] Permissions issue between Samba and AD

https://forum.tranquil.it/viewtopic.php?t=2752

Page 1 of 1

[SOLVED] Permissions issue between Samba and AD

Published: June 8, 2021 - 3:57 PM
by A_digital
Hello everyone,

I am unable to access the Samba file shares with any users of the Windows AD other than those in the "Administrators" group.

RWDC: Windows 2019
- Forest: 2008 R2

File server: Debian 10

I followed this tutorial: https://dev.tranquil.it/samba/fr/samba_ ... pendencies

# /etc/samba/smb.conf

Code: Select all

[global]
  workgroup = LAB
  security = ADS
  realm = LAB.DOM
  winbind separator = +
  idmap config *:backend = tdb
  idmap config *:range = 700001-800000
  idmap config LAB:backend  = rid
  idmap config LAB:range  = 10000-700000
  winbind use default domain = yes
  winbind enum users = yes
  winbind enum groups = yes
  vfs objects = acl_xattr
  map acl inherit = Yes
  template homedir = /home/homes/%U

[partages]
  path = /home/partages
  read only = no
# /etc/krb5.conf

Code: Select all

[libdefaults]
        dns_lookup_realm = false
        dns_lookup_kdc = true
        default_realm = LAB.DOM
$: wbinfo -u

Code: Select all

administrateur
invité
krbtgt
krbtgt_24540
j.tend
j.pierre
b.dupuit
m.nette
krbtgt_26021
...
Thanks in advance !

Re: Permissions problem between Samba and AD

Published: June 15, 2021 - 12:14
by dcardon
There's the chmod and chown options, which by default limited access to administrators and domain admins (this had to be adjusted by the admin). I've set it to the default for domain users.
https://dev.tranquil.it/samba/fr/samba_ ... ebian.html
Regards,
Denis
Time zone set to UTC+02:00
Page 1 of 1

Developed by phpBB® Forum Software © phpBB Limited

Official French translation © Qiaeru