Basil Hendroff
Wizard
- Joined
- Jan 4, 2014
- Messages
- 1,644
...and on the Windows 7 PC you are logged in as marlon?
Yes. Initially when I had connection I actually was not logged in as marlon on the windows PC but used the freenas marlon credentials when prompted, same on Ubuntu....and on the Windows 7 PC you are logged in as marlon?
Let's forget Ubuntu for the moment and focus on Windows 7. Fix one thing first.
Make sure marlow on the PC has the same password as the marlow account on FreeNAS. I'm assuming you're authenticating as a local user and not through AD. Log in as marlow on the PC and attempt to access the share.
I'm unclear how you achieved this? You can only log in as root on a FreeNAS server.Double checked I have access to it on the shell when logged in as marlon and was able to create file under /mnt/Storage/testvol.
Alright, the penny has dropped. I suggest you do not chop and change users and permissions between the GUI and Shell. I'm not surprised now that you're having problems. My recommendation to you is as follows:
- Keep it simple. Leave Ubuntu out of the equation for now. As SMB is native to Windows get that working first.
- Make all your user and permission changes (especially Unix mode bits) through the GUI.
- Do not work on mediashare, but get a test share working how you want it to work for the users and groups of mediashare. In the first instance, make marlon the owner of the share and make sure that share works with the Windows 7 user marlon.
- Then build up a more complex ACL. I leave you with this post.
- Once you're satisfied that the share behaves the way it should for various users, transfer what you have done to the mediashare.
- Finally, get it working with the Win10 Microsoft account and Ubuntu.
This post may be useful. https://www.ixsystems.com/community...fine-now-gets-access-denied.80078/post-555129Is there a log on the freenas for when accessing the samba share?
I'm not exactly sure what you're saying. Are you saying you're seeing the correct behaviour with the FreeNAS VM, but not with the physical system?
This post may be useful. https://www.ixsystems.com/community...fine-now-gets-access-denied.80078/post-555129
root@freenas[/usr/local/etc]# tail -f /var/log/samba4/log.smbd daemon_ready: daemon 'smbd' finished starting up and ready to serve connections [2018/09/19 15:33:10.107356, 0] ../../source3/smbd/server.c:1788(main) smbd version 4.10.12 started. Copyright Andrew Tridgell and the Samba Team 1992-2019 [2018/09/19 15:33:10.109828, 1] ../../source3/profile/profile_dummy.c:30(set_profile_level) INFO: Profiling support unavailable in this build. [2018/09/19 15:33:10.424275, 1] ../../source3/smbd/files.c:227(file_init_global) file_init_global: Information only: requested 460701 open files, 59392 are available. [2018/09/19 15:33:10.430670, 0] ../../lib/util/become_daemon.c:136(daemon_ready) daemon_ready: daemon 'smbd' finished starting up and ready to serve connections [2018/09/19 15:34:30.572146, 3] ../../auth/auth_log.c:647(log_authentication_event_human_readable) Auth: [SMB2,(null)] user []\[] at [Wed, 19 Sep 2018 15:34:30.572006 PDT] with [No-Password] status [NT_STATUS_OK] workstation [] remote host [ipv4:192.168.2.11:60392] became [FREENAS]\[nobody] [S-1-5-21-2531957174-576608748-821182387-501]. local host [ipv4:192.168.2.100:139] [2018/09/19 15:34:30.572508, 5] ../../auth/auth_log.c:751(log_successful_authz_event_human_readable) Successful AuthZ: [SMB2,NTLMSSP] user [NT AUTHORITY]\[ANONYMOUS LOGON] [S-1-5-7] at [Wed, 19 Sep 2018 15:34:30.572496 PDT] Remote host [ipv4:192.168.2.11:60392] local host [ipv4:192.168.2.100:139] [2018/09/19 15:34:30.573439, 1] ../../source3/smbd/service.c:348(create_connection_session_info) create_connection_session_info: guest user (from session setup) not permitted to access this share (IPC$) [2018/09/19 15:34:30.573544, 1] ../../source3/smbd/service.c:531(make_connection_snum) create_connection_session_info failed: NT_STATUS_ACCESS_DENIED [2018/09/19 15:34:42.048930, 3] ../../auth/auth_log.c:647(log_authentication_event_human_readable) Auth: [SMB2,(null)] user [WORKGROUP]\[marlon] at [Wed, 19 Sep 2018 15:34:42.048898 PDT] with [NTLMv2] status [NT_STATUS_OK] workstation [MBLPC] remote host [ipv4:192.168.2.11:60394] became [FREENAS]\[marlon] [S-1-5-21-2531957174-576608748-821182387-1032]. local host [ipv4:192.168.2.100:139] [2018/09/19 15:34:42.057469, 4] ../../auth/auth_log.c:751(log_successful_authz_event_human_readable) Successful AuthZ: [SMB2,NTLMSSP] user [FREENAS]\[marlon] [S-1-5-21-2531957174-576608748-821182387-1032] at [Wed, 19 Sep 2018 15:34:42.057447 PDT] Remote host [ipv4:192.168.2.11:60394] local host [ipv4:192.168.2.100:139] [2018/09/19 15:34:42.060403, 4] ../../auth/auth_log.c:751(log_successful_authz_event_human_readable) Successful AuthZ: [srvsvc,ncacn_np] user [FREENAS]\[marlon] [S-1-5-21-2531957174-576608748-821182387-1032] at [Wed, 19 Sep 2018 15:34:42.060378 PDT] Remote host [ipv4:192.168.2.11:60394] local host [ipv4:192.168.2.100:139] [2018/09/19 15:34:42.065688, 1] ../../source3/printing/printer_list.c:234(printer_list_get_last_refresh) Failed to fetch record! [2018/09/19 15:34:42.065816, 1] ../../source3/smbd/server_reload.c:64(delete_and_reload_printers) pcap cache not loaded [2018/09/19 15:34:46.775736, 2] ../../auth/auth_log.c:647(log_authentication_event_human_readable) Auth: [SMB2,(null)] user [WORKGROUP]\[Admin] at [Wed, 19 Sep 2018 15:34:46.775595 PDT] with [NTLMv2] status [NT_STATUS_NO_SUCH_USER] workstation [MBLPC] remote host [ipv4:192.168.2.11:54258] mapped to [WORKGROUP]\[Admin]. local host [ipv4:192.168.2.100:445] [2018/09/19 15:35:13.996126, 3] ../../auth/auth_log.c:647(log_authentication_event_human_readable) Auth: [SMB2,(null)] user [WORKGROUP]\[marlon] at [Wed, 19 Sep 2018 15:35:13.996090 PDT] with [NTLMv2] status [NT_STATUS_OK] workstation [MBLPC] remote host [ipv4:192.168.2.11:54260] became [FREENAS]\[marlon] [S-1-5-21-2531957174-576608748-821182387-1032]. local host [ipv4:192.168.2.100:445] [2018/09/19 15:35:13.997537, 4] ../../auth/auth_log.c:751(log_successful_authz_event_human_readable) Successful AuthZ: [SMB2,NTLMSSP] user [FREENAS]\[marlon] [S-1-5-21-2531957174-576608748-821182387-1032] at [Wed, 19 Sep 2018 15:35:13.997513 PDT] Remote host [ipv4:192.168.2.11:54260] local host [ipv4:192.168.2.100:445] [2018/09/19 15:35:14.030909, 0] ../../source3/smbd/uid.c:448(change_to_user_internal) change_to_user_internal: chdir_current_service() failed! [2018/09/19 15:35:14.031295, 0] ../../source3/smbd/uid.c:448(change_to_user_internal) change_to_user_internal: chdir_current_service() failed! [2018/09/19 15:35:14.031695, 0] ../../source3/smbd/uid.c:448(change_to_user_internal) change_to_user_internal: chdir_current_service() failed! [2018/09/19 15:35:14.032502, 0] ../../source3/smbd/uid.c:448(change_to_user_internal) change_to_user_internal: chdir_current_service() failed! [2018/09/19 15:35:14.032903, 0] ../../source3/smbd/uid.c:448(change_to_user_internal) change_to_user_internal: chdir_current_service() failed!
root@freenas[/usr/local/etc]# getfacl /mnt/Storage/Mediaset # file: /mnt/Storage/Mediaset # owner: marlon # group: mediashare owner@:rwxp--aARWcCos:fd-----:allow group@:rwxpDdaARWcCos:fd-----:allow everyone@:r-x---a-R-c--s:fd-----:allow everyone@:--------------:fd-----:allow
We're now in the realm of the black arts as far as I'm concerned and I need to bow out to a higher authority. Good luck with progressing this. I'll be watching this thread with interest.
root@freenas[/usr/local/etc]# tail -f /var/log/samba4/log.smbd daemon_ready: daemon 'smbd' finished starting up and ready to serve connections [2018/09/19 20:29:48.473101, 0] ../../source3/smbd/server.c:1788(main) smbd version 4.10.12 started. Copyright Andrew Tridgell and the Samba Team 1992-2019 [2018/09/19 20:29:48.475589, 1] ../../source3/profile/profile_dummy.c:30(set_profile_level) INFO: Profiling support unavailable in this build. [2018/09/19 20:29:48.814326, 1] ../../source3/smbd/files.c:227(file_init_global) file_init_global: Information only: requested 460701 open files, 59392 are available. [2018/09/19 20:29:48.820149, 0] ../../lib/util/become_daemon.c:136(daemon_ready) daemon_ready: daemon 'smbd' finished starting up and ready to serve connections
[2018/09/19 20:31:59.350689, 3] ../../auth/auth_log.c:647(log_authentication_event_human_readable) Auth: [SMB2,(null)] user [WORKGROUP]\[marlon] at [Wed, 19 Sep 2018 20:31:59.350657 AST] with [NTLMv2] status [NT_STATUS_OK] workstation [MBLPC] remote host [ipv4:192.168.2.11:60848] became [FREENAS]\[marlon] [S-1-5-21-2531957174-576608748-821182387-1032]. local host [ipv4:192.168.2.100:139] [2018/09/19 20:31:59.354052, 4] ../../auth/auth_log.c:751(log_successful_authz_event_human_readable) Successful AuthZ: [SMB2,NTLMSSP] user [FREENAS]\[marlon] [S-1-5-21-2531957174-576608748-821182387-1032] at [Wed, 19 Sep 2018 20:31:59.354032 AST] Remote host [ipv4:192.168.2.11:60848] local host [ipv4:192.168.2.100:139] [2018/09/19 20:31:59.356957, 4] ../../auth/auth_log.c:751(log_successful_authz_event_human_readable) Successful AuthZ: [srvsvc,ncacn_np] user [FREENAS]\[marlon] [S-1-5-21-2531957174-576608748-821182387-1032] at [Wed, 19 Sep 2018 20:31:59.356932 AST] Remote host [ipv4:192.168.2.11:60848] local host [ipv4:192.168.2.100:139] [2018/09/19 20:31:59.359883, 1] ../../source3/printing/printer_list.c:234(printer_list_get_last_refresh) Failed to fetch record! [2018/09/19 20:31:59.359994, 1] ../../source3/smbd/server_reload.c:64(delete_and_reload_printers) pcap cache not loaded
[2018/09/19 20:32:55.156599, 4] ../../auth/auth_log.c:751(log_successful_authz_event_human_readable) Successful AuthZ: [srvsvc,ncacn_np] user [FREENAS]\[marlon] [S-1-5-21-2531957174-576608748-821182387-1032] at [Wed, 19 Sep 2018 20:32:55.156580 AST] Remote host [ipv4:192.168.2.11:60848] local host [ipv4:192.168.2.100:139] [2018/09/19 20:32:55.157247, 1] ../../source3/printing/printer_list.c:234(printer_list_get_last_refresh) Failed to fetch record! [2018/09/19 20:32:55.157316, 1] ../../source3/smbd/server_reload.c:64(delete_and_reload_printers) pcap cache not loaded [2018/09/19 20:32:55.289971, 2] ../../auth/auth_log.c:647(log_authentication_event_human_readable) Auth: [SMB2,(null)] user [WORKGROUP]\[Admin] at [Wed, 19 Sep 2018 20:32:55.289829 AST] with [NTLMv2] status [NT_STATUS_NO_SUCH_USER] workstation [MBLPC] remote host [ipv4:192.168.2.11:54712] mapped to [WORKGROUP]\[Admin]. local host [ipv4:192.168.2.100:445]
[2018/09/19 20:33:50.085482, 3] ../../auth/auth_log.c:647(log_authentication_event_human_readable) Auth: [SMB2,(null)] user [WORKGROUP]\[marlon] at [Wed, 19 Sep 2018 20:33:50.085447 AST] with [NTLMv2] status [NT_STATUS_OK] workstation [MBLPC] remote host [ipv4:192.168.2.11:54718] became [FREENAS]\[marlon] [S-1-5-21-2531957174-576608748-821182387-1032]. local host [ipv4:192.168.2.100:445] [2018/09/19 20:33:50.087034, 4] ../../auth/auth_log.c:751(log_successful_authz_event_human_readable) Successful AuthZ: [SMB2,NTLMSSP] user [FREENAS]\[marlon] [S-1-5-21-2531957174-576608748-821182387-1032] at [Wed, 19 Sep 2018 20:33:50.087012 AST] Remote host [ipv4:192.168.2.11:54718] local host [ipv4:192.168.2.100:445] [2018/09/19 20:33:50.118213, 0] ../../source3/smbd/uid.c:448(change_to_user_internal) change_to_user_internal: chdir_current_service() failed! [2018/09/19 20:33:50.118595, 0] ../../source3/smbd/uid.c:448(change_to_user_internal) change_to_user_internal: chdir_current_service() failed! [2018/09/19 20:33:50.118855, 0] ../../source3/smbd/uid.c:448(change_to_user_internal) change_to_user_internal: chdir_current_service() failed! [2018/09/19 20:33:50.119320, 0] ../../source3/smbd/uid.c:448(change_to_user_internal) change_to_user_internal: chdir_current_service() failed! [2018/09/19 20:33:50.119539, 0] ../../source3/smbd/uid.c:448(change_to_user_internal) change_to_user_internal: chdir_current_service() failed!
[2018/09/19 20:32:55.289971, 2] ../../auth/auth_log.c:647(log_authentication_event_human_readable) Auth: [SMB2,(null)] user [WORKGROUP]\[Admin] at [Wed, 19 Sep 2018 20:32:55.289829 AST] with [NTLMv2] status [NT_STATUS_NO_SUCH_USER] workstation [MBLPC] remote host [ipv4:192.168.2.11:54712] mapped to [WORKGROUP]\[Admin]. local host [ipv4:192.168.2.100:445]