-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Thomas Boutell wrote:
| I'm definitely setting ACLs on directories... bear in | mind that Unix rules still apply, only the owner of the | file or dirctory and administrator (or whoever maps to | root) have the privilege of setting and changing ACLs. | | Would still love to know why I see raw SIDs when I | reopen the ACLs in Windows, though.
If you see a SID instead of a name it means that the client is unable to resolve that SID to a name (sorry for stating the obvious). For domain members, the LookupSid() call is sent from the client to the DC.
My guess is that you aren't running winbindd and there the SID is the Samba server's local SID which the DC doesn't know anything about. I think the client should still fall back to asking the file server to resolve the SID is the DC fails.
Maybe an ethereal trace would help you see where the process is falling down?
cheers, jerry ===================================================================== Alleviating the pain of Windows(tm) ------- http://www.samba.org GnuPG Key ----- http://www.plainjoe.org/gpg_public.asc "I never saved anything for the swim back." Ethan Hawk in Gattaca -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.5 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFCQALaIR7qMdg1EfYRAgsbAJwNhDmWg+I7wSMabOVTraszvMxTmgCfS4B2 yp/Fao0mF317IS4ufv11r6k= =SdGa -----END PGP SIGNATURE----- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba