Hi
all,
I have a problem
with the samba 2.2.4.
The server is
running as PDC and sharing programms and files for the
users.
But if one user is
opening a file, another user isn't able to open the file in read-only
mode.
The user didn't got
any access on this file.
I have attached my
smb.conf below.
Hope someone can
help me.
Thanx
Jo
---------------------------------------------------------------------------------------------------------------------------------------------------------
smb.conf
---------------------------------------------------------------------------------------------------------------------------------------------------------
# This is the main
Samba configuration file. You should read the
# smb.conf(5) manual page in order to understand the options listed
# here. Samba has a huge number of configurable options (perhaps too
# many!) most of which are not shown in this example
#
# Any line which starts with a ; (semi-colon) or a # (hash)
# is a comment and is ignored. In this example we will use a #
# for commentry and a ; for parts of the config file that you
# may wish to enable
#
# NOTE: Whenever you modify this file you should run the command "testparm"
# to check that you have not many any basic syntactic errors.
#
#======================= Global Settings =====================================
[global]
log file = /usr/local/samba/var/users/log.%m
max log size = 50
domain master = yes
time server = no
dns proxy = no
domain logons = yes
encrypt passwords = yes
announce as = NT Server
logon path = \\%L\Profiles\%U
server string = Samba %v (PDC)
domain admin group = @root
nt acl support = no
workgroup = K1BRSD1
protocol = NT1
logon script = %U.bat
netbios name = K1BRSNT1
socket options = TCP_NODELAY
netbios aliases = FS2 fs2 gw1 GW1
load printers = no
local master = yes
security = user
os level = 255
admin users = superuser
announce version = 4.2
wins support = true
# smb.conf(5) manual page in order to understand the options listed
# here. Samba has a huge number of configurable options (perhaps too
# many!) most of which are not shown in this example
#
# Any line which starts with a ; (semi-colon) or a # (hash)
# is a comment and is ignored. In this example we will use a #
# for commentry and a ; for parts of the config file that you
# may wish to enable
#
# NOTE: Whenever you modify this file you should run the command "testparm"
# to check that you have not many any basic syntactic errors.
#
#======================= Global Settings =====================================
[global]
log file = /usr/local/samba/var/users/log.%m
max log size = 50
domain master = yes
time server = no
dns proxy = no
domain logons = yes
encrypt passwords = yes
announce as = NT Server
logon path = \\%L\Profiles\%U
server string = Samba %v (PDC)
domain admin group = @root
nt acl support = no
workgroup = K1BRSD1
protocol = NT1
logon script = %U.bat
netbios name = K1BRSNT1
socket options = TCP_NODELAY
netbios aliases = FS2 fs2 gw1 GW1
load printers = no
local master = yes
security = user
os level = 255
admin users = superuser
announce version = 4.2
wins support = true
[netlogon]
comment = Network Logon Service
path = /usr/local/samba/netlogon
guest ok = no
writable = yes
share modes = no
comment = Network Logon Service
path = /usr/local/samba/netlogon
guest ok = no
writable = yes
share modes = no
# Un-comment the
following to provide a specific roving profile share
# the default is to use the user's home directory
[Profiles]
create mask = 0600
directory mask = 0700
valid users = @samba
browseable = no
case sensitive = yes
force create mode = 770
force directory mode = 770
create mode = 770
writable = yes
directory mode = 770
force group = samba
path = /usr/local/samba/profile
public = yes
# the default is to use the user's home directory
[Profiles]
create mask = 0600
directory mask = 0700
valid users = @samba
browseable = no
case sensitive = yes
force create mode = 770
force directory mode = 770
create mode = 770
writable = yes
directory mode = 770
force group = samba
path = /usr/local/samba/profile
public = yes
[public]
comment = Public Stuff
path = /usr/local/samba/public
public = yes
writable = yes
printable = no
write list = @samba
comment = Public Stuff
path = /usr/local/samba/public
public = yes
writable = yes
printable = no
write list = @samba
[alles]
create mask = 700
browsable = no
directory mask = 700
valid users = @supervisor
comment = alles auf Linux
write list = superuser
writable = yes
path = /
create mask = 700
browsable = no
directory mask = 700
valid users = @supervisor
comment = alles auf Linux
write list = superuser
writable = yes
path = /
[programme]
browsable = yes
valid users = @samba
comment = Programmpfad
write list = @supervisor,@schulung
create mode = 770
directory mode = 770
dont descend = /winshare/programme/lost+found
path = /winshare/programme/users/%u
browsable = yes
valid users = @samba
comment = Programmpfad
write list = @supervisor,@schulung
create mode = 770
directory mode = 770
dont descend = /winshare/programme/lost+found
path = /winshare/programme/users/%u
[daten]
browsable = yes
valid users = @samba
comment = Datenpfad
write list = @supervisor
create mode = 770
directory mode = 770
writable = yes
dont descend = /winshare/daten/lost+found
force group = samba
path = /winshare/daten/users/%u
sync always = yes
browsable = yes
valid users = @samba
comment = Datenpfad
write list = @supervisor
create mode = 770
directory mode = 770
writable = yes
dont descend = /winshare/daten/lost+found
force group = samba
path = /winshare/daten/users/%u
sync always = yes
[tools]
create mask = 770
browsable = yes
directory mask = 770
valid users = @samba
comment = Tools
write list = jourdan,@supervisor
dont descend = /winshare/tools/lost+found
path = /winshare/tools/pub
create mask = 770
browsable = yes
directory mask = 770
valid users = @samba
comment = Tools
write list = jourdan,@supervisor
dont descend = /winshare/tools/lost+found
path = /winshare/tools/pub
[vorlagen]
browsable = yes
valid users = @samba
comment = Vorlagenpfad
case sensitive = yes
browseable = no
write list = superuser,jourdan
preserve case = yes
force create mode = 770
create mode = 770
force directory mode = 770
directory mode = 770
force group = samba
path = /winshare/vorlagen
browsable = yes
valid users = @samba
comment = Vorlagenpfad
case sensitive = yes
browseable = no
write list = superuser,jourdan
preserve case = yes
force create mode = 770
create mode = 770
force directory mode = 770
directory mode = 770
force group = samba
path = /winshare/vorlagen
[prt]
valid users = @ids
comment = Excel-Reportpfad
write list = @supervisor
create mode = 770
writable = yes
directory mode = 770
path = /winshare/daten/ids
valid users = @ids
comment = Excel-Reportpfad
write list = @supervisor
create mode = 770
writable = yes
directory mode = 770
path = /winshare/daten/ids
[sap]
create mode = 770
directory mode = 770
valid users = @sap
comment = SAP Programmpfad
path = /winshare/programme/sapserver
write list = jourdan,@supervisor
create mode = 770
directory mode = 770
valid users = @sap
comment = SAP Programmpfad
path = /winshare/programme/sapserver
write list = jourdan,@supervisor
[mail]
valid users = @samba
comment = Postverzeichnis
force create mode = 770
force directory mode = 770
create mode = 770
directory mode = 770
writable = yes
force group = samba
path = /winhome
valid users = @samba
comment = Postverzeichnis
force create mode = 770
force directory mode = 770
create mode = 770
directory mode = 770
writable = yes
force group = samba
path = /winhome
[Amun]
create mode = 770
valid users = @schulung
directory mode = 770
comment = Das Vermächtnis des Amun
force group = samba
path = /winshare/programme/TutorWIN/Amun
create mode = 770
valid users = @schulung
directory mode = 770
comment = Das Vermächtnis des Amun
force group = samba
path = /winshare/programme/TutorWIN/Amun
[tb1]
valid users = @zeichenbuero,@supervisor
comment = Datenpfad Zeichenbuero
create mode = 770
writable = yes
directory mode = 770
force group = samba
path = /winshare/daten/tb1
valid users = @zeichenbuero,@supervisor
comment = Datenpfad Zeichenbuero
create mode = 770
writable = yes
directory mode = 770
force group = samba
path = /winshare/daten/tb1
[homes]
create mode = 777
writable = yes
directory mode = 777
comment = Homes
force group = samba
browseable = no
[progs]
valid users = superuser,jourdan
comment = Programme fuer Admin
browseable = no
force create mode = 770
create mode = 770
force directory mode = 770
writable = yes
directory mode = 770
force group = samba
path = /winshare/programme
valid users = superuser,jourdan
comment = Programme fuer Admin
browseable = no
force create mode = 770
create mode = 770
force directory mode = 770
writable = yes
directory mode = 770
force group = samba
path = /winshare/programme