ghostwolf59
Contributor
- Joined
- Mar 2, 2013
- Messages
- 165
After upgrading freenas from 9.2.1.8 to 9.3-STABLE-201506042008 my permissions starting to behave weird i.e no longer work.
I have one main group all users belong to (that should provide a default read only access to content)
I also have one main (super user account) held by me that provide close to root access to everything
Once I upgraded the freenas FreeNAS-9.3-STABLE-201506042008 my windows acl started to break with "Account Unknown(S-xxxx) being reported by windows
Whats really weird is that one of the two accounts always seem to be loaded properly after rebooting freenas, but it's flicking between the super user and the general group account)
My current reboot exposed the super user account, where the general account is reported as "Account Unknown (S-xxxx)
Yesterday my super user account reported "Account unknown" while the general account was ok.
So the acl being successfully recognized seem random - most annoying !
freenas also spits out messages like this to the console...
"STATUS=demon 'smbd' finished starting up on file ./..." Error = Operation not supported"
Other messages reported are: "STATUS=deamon on 'winbindd' finsihed starting up and ready to serve connections sam_sids_to_names: possible deadlock - trying to lookup SID S-XXXXXX"
I have tried to manually clear acls (as per https://forums.freenas.org/index.ph...le-deadlock-trying-to-lookup-sid.21982/page-2)
i.e
1. [root@freenas ~]# net groupmap list
Environment LOGNAME is not defined. Trying anonymous access.
xxx (S-1-5-21-2736923429-478344119-3993861682-1000) -> xxx
2.[root@freenas ~]# net groupmap delete sid="S-1-5-21-2736923429-478344119-3993861682-1000"
Environment LOGNAME is not defined. Trying anonymous access.
Sucessfully removed S-1-5-21-2736923429-478344119-3993861682-1000 from the mapping db
3. [root@freenas ~]# net groupmap add unixgroup=users rid=1000
Environment LOGNAME is not defined. Trying anonymous access. <== Error
Can't lookup UNIX group users
So even though I can delete the account, I don't seem to be able to re-create it.
... and from what I have read, unless I manage to get this account created, but acl will continue to be stuffed up after next reboot.
What is the solution to this ???? - This is driving me nuts!
Short time solution seem to allow everyone open access to everything - which I clearly don't want !:(
cheers
I have one main group all users belong to (that should provide a default read only access to content)
I also have one main (super user account) held by me that provide close to root access to everything
Once I upgraded the freenas FreeNAS-9.3-STABLE-201506042008 my windows acl started to break with "Account Unknown(S-xxxx) being reported by windows
Whats really weird is that one of the two accounts always seem to be loaded properly after rebooting freenas, but it's flicking between the super user and the general group account)
My current reboot exposed the super user account, where the general account is reported as "Account Unknown (S-xxxx)
Yesterday my super user account reported "Account unknown" while the general account was ok.
So the acl being successfully recognized seem random - most annoying !
freenas also spits out messages like this to the console...
"STATUS=demon 'smbd' finished starting up on file ./..." Error = Operation not supported"
Other messages reported are: "STATUS=deamon on 'winbindd' finsihed starting up and ready to serve connections sam_sids_to_names: possible deadlock - trying to lookup SID S-XXXXXX"
I have tried to manually clear acls (as per https://forums.freenas.org/index.ph...le-deadlock-trying-to-lookup-sid.21982/page-2)
i.e
1. [root@freenas ~]# net groupmap list
Environment LOGNAME is not defined. Trying anonymous access.
xxx (S-1-5-21-2736923429-478344119-3993861682-1000) -> xxx
2.[root@freenas ~]# net groupmap delete sid="S-1-5-21-2736923429-478344119-3993861682-1000"
Environment LOGNAME is not defined. Trying anonymous access.
Sucessfully removed S-1-5-21-2736923429-478344119-3993861682-1000 from the mapping db
3. [root@freenas ~]# net groupmap add unixgroup=users rid=1000
Environment LOGNAME is not defined. Trying anonymous access. <== Error
Can't lookup UNIX group users
So even though I can delete the account, I don't seem to be able to re-create it.
... and from what I have read, unless I manage to get this account created, but acl will continue to be stuffed up after next reboot.
What is the solution to this ???? - This is driving me nuts!
Short time solution seem to allow everyone open access to everything - which I clearly don't want !:(
cheers