Forums » Developer Forum »

New user with a pretty basic question

Added by Jason Single about 1 year ago

I am a new user to nexenta community edition and so far am loving it! But i have an odd issue which i am sure is a setting that i have incorrect in my config.

I am sharing out a mount point via CIFS to some windows machines. I have 3 users A,B&C. They all have a local account on the nexenta box with the same user/pass as the windows machines. All the machines including the nexenta are joined to the same workgroup. All 3 users are part of the same unix group "staff" and have pull priveleges to the share. The issue i am running into is if user A creates a folder on the share, user B &C are denied permission to it. I am sure this has something to do with an ACL and who "owns" the folder. Is there some setting i am missing that would allow all the users of the group "staff" to access this newly created folder?

I apologize for the very basic question but unix is very new to me!

Thanks in advance for any replies.


Replies

RE: New user with a pretty basic question - Added by Christian o about 1 year ago

See wiki NAS http://www.nexenta.org/projects/site/wiki/ZFS_Permissions for an example of how to setup ACL's

RE: New user with a pretty basic question - Added by Chris Casey about 1 year ago

Jason,

This thing kicked my butt too so here is what I used. I was actually in the exact same boat as you, needed to share some folders, I wanted everyone (all local users) to have read, only local users in a group called "geek" to have read & wright, and those same users to be able to read what the other local users had written. So I created three local users, chris, vince, & bryan. I put them in the group "geek". I created another user called archives and left it in its default group. I then ran the following command against my folder which was called /data/archives (yours is probably called something different so just change the last line to the path to your folder)

/usr/sun/bin/chmod -R A=\

owner@:full_set:d:allow,\

owner@:full_set:f:allow,\

group:geeks:full_set:d:allow,\

group:geeks:full_set:f:allow,\

everyone@:rxaARWcs:d:allow,\

everyone@:raARWcs:f:allow \

/data/archives

Hope this helps speed things up for you. Of course this doesn't substitute for eventually learning what is going on with these commands though.