Freenas 11.3U1 SMB permission problem with new documents.

[peter boos]

We got a freenas environment, a typical getfacl . for a smb shared zfs folder looks alike :
(./somefolder)
Owner: Domain\Peter
Group: Domain\domaingroup
owner@:rwxpDdaARWcCos:fdi----:allow
group@:rwxpDdaARWcCos:fdi----:allow

We can fix files to comply with above group@ permissions by typing:

find . -type d -exec setfacl -m group@:full_set:df:allow {} \;
find . -type f -exec setfacl -m group@:full_set::allow {} \;

But that's not ideal because when a user creates a new file the workaround does not get triggered.
ea in the earlier folder if Lisa would create a file an if retrieve the file permissions I get :

File ./demo.txt
Owner: Domain\Lisa
group: Domain\domaingroup
owner@:rw-p--aARWcCos:-----allow
group@:r-----a-R-c--s:-----allow

I would like that that group@ would read the same ea group@:rwxpDdaARWcCos:fdi----:allow
I have no idea why this doesn't happen.
Does it have to do with aclinherit, aclmode, or some smb.conf setting in freenas or am i missing something else here ?
Is it possible so that windows users connecting to the smb share upon file creation use group@ of the folder for added files.

 

[peter boos]

Solved it the problem with Freenas / Freebsd ..
The webgui provides can be used to set permissions, and to keep things clean one should that only.
better re-apply and and remove old entries. and keep the permission model simple.
Need something else, ==> make another smb share with the permissions as you want it.
Better do not mix command line and webgui.. yes its possible might work in the end it becomes a pain in te .ss