|
ACL Help
So I finely got my folders shared and using active directory, but now I need to finish setting up the folder permission. Is there a quicker way to do this then going through the terminal one folder at a time?
I started using a windows computer and changing the permisions there, which was working nicely except on about half of the folder I'm getting an message that tell me sometime like "unable to save permissions changes on SomeFile, the parameter is incorrect". Looking at the ACLs with getfacl it seems the files that are giving me the trouble have different users and permissions than the others so I'm guessing thinking if I went in a edited the users on all of them that I would be able to go back the window computer and finish up from there. At this point I'm almost condisering renaming the top folder and recreating everything under it. All of the files and folders were copied over from an old Windows Server. From the terminal I've tried editing the list hoping that it would trickle down to all of the subfolders and thier contents, but no go. Any help would be nice. Thanks |
Ok I found -Rm help with the folders. Example using setfacl -Rm d:g:"domain admins":rwx /f/ added the domain admin group to all of the folder beneath /f/. That's a great start, but it looks like the exisitng files didn't get the same permissions. By permissions I'm referring to the users in the ACL AND thier permissions.
|
So I got a flustered and deleted all everything I could using setfacl -Rb "/f/ and to make sure, I followed it up with setfacl -RK "/f/ That seem to do it. Now everything has the same permissions. :) I went back in and added the domain user and the domain admins and still everything went fine. Next I came to a folder that should only be accessed by the people in the domain admins group. I removed the domain users and now I cannot get in from a windows machine. I'm in the admin group. Here what it looks like:
Quote:
|
| All times are GMT -5. The time now is 09:04 PM. |