Hello,
I was wondering if someone could shed some expertise on a problem I'm experiencing.
We are running an SMB and AFP volume share from a 10.7.4 machine.
The machine is bound to our AD and requires users to authenticate before they have access to it.
We have the necessary AD groups added to allow for this to happen (domainusers)
The problem is that any new folders created by users that have authed successfully do not inherit the permissions of the share - they lock themselves to the user and no one else can get in.
This happens when you connect from both mac and PC and also using SMB or AFP on a mac.
If you propagate the share permissions to the folders it fixes it until a new folder is created.
Here are some pictures of the settings:
apple i on same folder for AFP and SMB respectively;
https://dl.dropbox.com/u/343606/network%20share%20issue/AFP.png
https://dl.dropbox.com/u/343606/network%20share%20issue/SMB.png
Settings of share point with our groups
https://dl.dropbox.com/u/343606/network%20share%20issue/Transfer%20share%20point%20settings.png
ls -als list of SMB and AFP for the network share, respectively:
https://dl.dropbox.com/u/343606/network%20share%20issue/SMB%20and%20AFP%20next%20to%20each%20other.png
Ive restarted the server, the service, recreated the share, delete the items but its still doing it and I cant for the life of me work out why the ACL's arent being adhered to as such - this is what I can understand considering that the permission groups are actually showing.
Excuse any errors in terminology I'm learning all this as I go along.
Maybe we could remove the need for ACL's and still make sure that users have to log into the share with their network credentials?
If Ive missed anything please dont hesitate to ask.
Regards,
Robert
