I'm looking to setup what I consider a simple restricted file share...
For example let's take afp://servername/sharename
and the group DOMAIN\privategroup from our AD environment.
In workgroup manager I have set the owner of the share to
administrator with read & write control.
The group is set to privategroup with readonly access
everybody is set to no access, as I would like to hide this share from
users not in the privategroup.
Using the effective permissions inspector everything looks as expected.
Users in the DOMAIN\privategroup are showing full read access.
Users not in the DOMAIN\privategroup are showing only Read Attributes,
Read Permissions
However when a user who's account is in the DOMAIN\privategroup logs
in to the server they don't see the share at all.
The only thing that changes that is the everyone permission.
The test client is a 10.4.2 system that isn't connected to the
directory. I have cruised the documentation for ACL & ACE's but this
setup is so basic that it seems to me that I wouldn't need them. The
AD setup on this server is function properly from all other aspects.
Suggestions? Anybody have this type of setup working?
Thanks,
Blakke-
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden
This email sent to email@hidden
