Unsolved
This post is more than 5 years old
1 Rookie
•
13 Posts
0
622
March 16th, 2012 08:00
How Celerra Determines GID
Hey All -
I'm curious how the celerra determines GID for unix permissions when created through Windows. Here's a scenario:
User x creates a file on their Windows "My Documents" directory which sits on a NAS share. When the perms are viewed from the *nix side, the GID on the file is set to 32771 (which is the Domain Users GID set via usermapper).
The same user can create a file on the their *nix home directory (which is mounted local from the NAS), and their permissions show up just fine, as the UID/GID coincides with what is on the NIS.
I'm thinking of just turning off the usermapper altogether and concocting some sort of solution to automatically write the mappings for the Celerra, but I'm not 100% sure how to do that yet. Is this a plausible solution? Has anyone done this?
Thanks in advance.
Chris
Rainer_EMC
4 Operator
•
8.6K Posts
0
March 16th, 2012 13:00
How credentials from the „other world“ are built depend on your user mapping setup
How they are then used for access right checking depends on the access policy (per file system) and various parameters
Please look at the User Mapping, CIFS multi-protocol and Parameter manuals
Understanding secmap and directory sources doesn’t hurt either.
This isn’t a simple topic – I really suggest to look at the manuals carefully.
Plus setting up a simulator to test before fiddling with production systems.
The default internal usermapper doesn’t really map in a way that’s configurable – it only assigns a unique UID/GID to a not yet mapped Windows user / SID.
Its really only meant for CIFS only use or mulit-protocol where you don’t care about correct mapping of owner and access rights from both worlds.
Rainer
cmschube-dell
1 Rookie
•
13 Posts
0
March 21st, 2012 10:00
Hey Rainer -
Thanks for the info.. I found what I needed in another forum
cifs acl.useUnixGid
Values: 0 or 1
https://community.emc.com/SNIP
1 = Assign the Windows user¿s GID (as found in
the GID field of the .etc/passwd file, NIS database
entry, or Active Directory).
Thanks again!