On Thu, 2011-10-13 at 12:56 +0200, lynn wrote:
On Thursday 13 Oct 2011 12:11:07 Roger Oberholtzer wrote:
On Thu, 2011-10-13 at 11:22 +0200, lynn wrote:
On Thursday 13 Oct 2011 08:10:17 Roger Oberholtzer wrote:
On Wed, 2011-10-12 at 11:28 -0700, John Andersen wrote:
On 10/11/2011 11:59 PM, lynn wrote:
Hi. Thanks. As you say, 'somelinuxuser' is better than root but my client boxes do not have any users on them.
Huh? That makes no sense at all. How can you have no users defined on a client box and at the same time complain that things are mounted root:root?
With no users defined, what possible other choice would there be.
I suspect there are local users. I know that if an openSUSE box has joined an ActiveDirectory, you can have it so that when a person logs in with their ActiveDirectory credentials, an account and $HOME are automatically created if they do not already exist. Their $HOME is in /home/$WORKGROUP. It really works great.
I know the original poster said they were authenticated with LDAP. Perhaps in that case this does not happen (automatically making a local account and $HOME). But unless all these folk run as root, there must be a local account. If the LDAP method did not set it up automatically, then someone had to do it by hand in advance.
Indeed, I think we are not getting the complete picture.
Lynn, what does a user get if they type: whoami
and
echo $HOME
in a terminal window?
There are no local users on the client. On the client, authenticated via ldap:
whoami lynn
echo $HOME /home/lynn
I created lynn as an ldap user on the server using yast just taking the default values so I don't think this is an ldap problem. I think it's a samba/cifs problem as my current lan works fine using nfs/nis.
Just to be sure:
The client is an openSUSE system?
Yes, 11.4
The server is a SAMBA system?
Yes, 11.4
There is no lynn entry in /etc/passwd?
No on neither client nor server.
Wouldn't your mount command, which was:
mount -t cifs //192.168.1.2/users /home -o rw,setuid
mount all the users on the local system? It is the '/home' that I wonder about. Wouldn't it have to be '/home/lynn' if you were only mounting lynn's home with this command?
yes. It does indeed mount all users on the local system. That's what I want. I want ALL my users to be able to login, not just lynn.
I suspect that is the problem. If each user's directory is mounted for that user, then Linux can give that mount point permissions. I think that is because CIFS does not have true per-file permissions. At least it does not appear they are used (if they exist at all) by the Linux CIFS file system. There is only the permissions for the while mount point. In your mount, I see that you have uid=0. There you have it. Linux will make all files appear to belong to root. This is at the mount level. I doubt some other layer can change that. I think that you will need to have each user's directory mounted for that user, not a common mount for all. I think it will also be a requirement that the user has a Linux uid/gid, as that is what controls the permissions and would be needed by mount. I don't know what LDAP is doing in this respect. Since the whole shebange is mounted once, and the client and server are Linux, why CIFS? Why not a file system that has a concept of per-file ownership? This business of mounting CIFS stores automatically at login and with correct permissions is something I have not sorted out either. I 'only' have the ActiveDirectory user/password and automatic account stuff working. If the user does not exist, is LDAP assigning some sort of permanent uid/gid to each account? Meaning that if you get a uid/gid one time, would you get the same one the next time? What is printed in the UID column for this command (change lynn the current user): ps -lnU lynn If you change the uid= in your mount command to that, the files will belong to lynn. And only lynn... Yours sincerely, Roger Oberholtzer OPQ Systems / Ramböll RST Office: Int +46 10-615 60 20 Mobile: Int +46 70-815 1696 roger.oberholtzer@ramboll.se ________________________________________ Ramböll Sverige AB Krukmakargatan 21 P.O. Box 17009 SE-104 62 Stockholm, Sweden www.rambollrst.se -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org