beautypg.com

Linux permissions on files created over smb – HP StoreAll Storage User Manual

Page 87

background image

Linux permissions on files created over SMB

The Linux permissions on files and folders created over SMB are not generally of interest to Windows
users and administrators, but some insight is useful when considering multiprotocol access and for
StoreAll system administrators. See

“Permissions in a cross-protocol SMB environment” (page 100)

.

The HP SMB server maps Windows user and group credentials to Linux UIDs and GIDs. The UIDs
and GIDs are generated automatically by the CIFS server unless Linux Static User Mapping has
been enabled in which case the UIDs and GIDs are looked up in Active Directory or LDAP.

Use lw-find-user-by-name to find the Linux UID for a Windows user and use
lw-find-user-by-name

to find the Linux GID for a Windows group. You can also do reverse

lookups with UIDs and GIDs to find the equivalent Windows using lw-find-user-by-id and
lw-find-group-by-id

.

[root@ibrix01a ~]# /opt/likewise/bin/lw-find-user-by-name IB\\testuser1

The command displays the following output:

User info (Level-0):

====================

Name: IB\testuser1

SID: S-1-5-21-3681183244-3700010909-334885885-27276

Uid: 1060661900

Gid: 1060635137

Gecos: testuser1

Shell: /bin/sh

Home dir: /home/local/IB/testuser1

Logon restriction: NO

Do a reverse lookup with the UID by entering the following command:

[root@ibrix01a ~]# /opt/likewise/bin/lw-find-user-by-id 1060661900

The command displays the following output:

User info (Level-0):

====================

Name: IB\testuser1

SID: S-1-5-21-3681183244-3700010909-334885885-27276

Uid: 1060661900

Gid: 1060635137

Gecos: testuser1

Shell: /bin/sh

Home dir: /home/local/IB/testuser1

Logon restriction: NO

The GID is the GID for the user’s primary group as set in Active Directory. Do a reverse lookup
and find out the name of that group by entering the following command:

[root@ibrix01a ~]# /opt/likewise/bin/lw-find-group-by-id 1060635137

The command displays the following output:

Group info (Level 0):

====================

Name: IB\domain^users

SMB shares

87

See also other documents in the category HP Storage: