Date: Mon, 6 Aug 2007 12:06:46 +0200 From: "Johan Hendriks" <Johan@double-l.nl> To: "Wilkinson, Alex" <alex.wilkinson@dsto.defence.gov.au> Cc: freebsd-questions@freebsd.org Subject: RE: setfacl(1) - Can FreeBSD's ACLs contain groups from NT/AD domains ? Message-ID: <57200BF94E69E54880C9BB1AF714BBCB19BC14@w2003s01.double-l.local> References: <20070806091033.GA57676@obelix.dsto.defence.gov.au>
next in thread | previous in thread | raw e-mail | index | archive | help
>Hi all, >I have "FreeBSD 7.0-CURRENT #1: Wed Jul 25" authenticating successfully against >active directory via samba's winbindd(8). I need to manage samba shares via >FreeBSD ACLs and CIFS ACLs. From my reading of setfacl(1) I should be able to >set group permissions using the syntax of DOMAIN\group-name. For example: > #setfacl -d -m g:"MYDOMAIN\mygroupname":rwx test >However, when I do this on FreeBSD -CURRENT I get the following error: > #setfacl -d -m g:"MYDOMAIN\mygroupname":rwx test > setfacl: g:MYDOMAIN\mygroupname: Invalid argument >From a quick Google it looks like Linux ACLs can do the aforementioned >[http://www.techtutorials.net/blogs/index.php?mode=viewuser&user_id=7]. >Does anyone know ? As far as i know and the way i do it is leaving the Domain part out just the group name. Wbinfo -g shows the groups if all is ok. Regards, Johan No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.5.476 / Virus Database: 269.11.6/938 - Release Date: 5-8-2007 16:16
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?57200BF94E69E54880C9BB1AF714BBCB19BC14>