I have an issue that I;m going round in circles with, I hope you can help.
The Set up:
Server 1 (CIFS Client) – CentOS 6.3 AD integrated uing Samba/Winbind & idmap_ad
Server 2 (CIFS Server) – CentOS 6.3 AD integrated uing Samba/Winbind & idmap_ad
All users (apart from root) are AD authenticated and this, including groups, etc works happily.
What's working:
I have created a share on Server 2:
[share2]
path = /srv/samba/share2
writeable = yes
Permissions on the share:
drwxrwx---. 2 root domain users 4096 Oct 12 09:21 share2
I can log into a Windows machine as user5 (member of domain users) and everything works as it should, for example: If I create a file it shows the correct permissions and attributes on both the MS and the Linux sides.
Where I Fall Down:
I mount the share on Server 1 using:
# mount //server2/share2 /mnt/share2/ -o username=cifsmount,password=blah,domain=blah
Or using fstab:
//server2/share2 /mnt/share2 cifs credentials=/blah/.creds 0 0
This mounts fine, but….
If I su, or log onto server 1 as a normal user (say user5) and try to create a file I get:
#touch test
touch test
touch: cannot touch `test': Permission denied
Then if I check the folder the file was created but as the cifsmount user:
-rw-r--r--. 1 cifsmount domain users 0 Oct 12 09:21 test
I can rename, delete, move or copy stuff around as user5, I just can't create anything, what am I doing wrong?
I'm guessing it's something to do with the mount action as when I log onto server2 as user5 and access the folder locally it all works as it should.
Can anyone point me in the right direction?
Best Answer
Look at the "noperm" mount option. Also you may wish to consider looking at the "unix extensions" option on the server too.