Groups | Search | Server Info | Login | Register
| From | Rowland Penny via samba <samba@lists.samba.org> |
|---|---|
| Newsgroups | linux.samba |
| Subject | Re: [Samba] Problem sysvolreset |
| Date | 2017-03-07 17:00 +0100 |
| Message-ID | <tipGO-1c1-25@gated-at.bofh.it> (permalink) |
| References | <tipdL-11m-13@gated-at.bofh.it> |
| Organization | linux.* mail to news gateway |
On Tue, 7 Mar 2017 12:23:59 -0300
Edson Tadeu Almeida da Silveira via samba <samba@lists.samba.org> wrote:
>
>
>
> # samba-tool gpo aclcheck -U Administrator
>
> Password for [DOMAIN\Administrator]:
> ERROR: Invalid GPO ACL
> O:LAG:DAD:PAI(A;OICI;0x001f01ff;;;DA)(A;OICI;0x001f01ff;;;EA)(A;OICIIO;0x001f01ff;;;CO)(A;OICI;0x001f01ff;;;DA)(A;OICI;0x001f01ff;;;SY)(A;OICI;0x001200a9;;;AU)(A;OICI;0x001200a9;;;ED)
> on path
> (cbmerj.local\Policies\{F274A070-5B45-4434-BB7C-75AE1D702A6B}),
> should be
> O:DAG:DAD:P(A;OICI;0x001f01ff;;;DA)(A;OICI;0x001f01ff;;;EA)(A;OICIIO;0x001f01ff;;;CO)(A;OICI;0x001f01ff;;;DA)(A;OICI;0x001f01ff;;;SY)(A;OICI;0x001200a9;;;AU)(A;OICI;0x001200a9;;;ED)
>
>
> This last error is happening to all my policies. After each police i
> repair, another one shows up with problem and i can´t delete all
> policies and recreate to test.
>
> Thanks for your help!
>
>
Welcome to the wonderful world of SYSVOL on a Samba4 AD DC ;-)
Have you set a gidNumber for Domain Admins ?
If so remove it, Domain Admins needs to own files and dirs in sysvol
and if the group has a gidNumber it cannot.
Note:
'O:LA' = owner: Local Administrator
'O:DA' = owner: Domain Admins
'G:DA' = group: Domain Admins
Rowland
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Back to linux.samba | Previous | Next — Previous in thread | Next in thread | Find similar
[Samba] Problem sysvolreset Edson Tadeu Almeida da Silveira via samba <samba@lists.samba.org> - 2017-03-07 16:30 +0100
Re: [Samba] Problem sysvolreset Rowland Penny via samba <samba@lists.samba.org> - 2017-03-07 17:00 +0100
Re: [Samba] Problem sysvolreset Edson Tadeu Almeida da Silveira via samba <samba@lists.samba.org> - 2017-03-07 17:20 +0100
Re: [Samba] Problem sysvolreset Rowland Penny via samba <samba@lists.samba.org> - 2017-03-07 17:40 +0100
Re: [Samba] Problem sysvolreset Edson Tadeu Almeida da Silveira via samba <samba@lists.samba.org> - 2017-03-07 18:30 +0100
Re: [Samba] Problem sysvolreset Rowland Penny via samba <samba@lists.samba.org> - 2017-03-07 18:40 +0100
Re: [Samba] Problem sysvolreset Edson Tadeu Almeida da Silveira via samba <samba@lists.samba.org> - 2017-03-07 18:50 +0100
Re: [Samba] Problem sysvolreset Kris Lou via samba <samba@lists.samba.org> - 2017-03-07 19:30 +0100
Re: [Samba] Problem sysvolreset Rowland Penny via samba <samba@lists.samba.org> - 2017-03-07 20:00 +0100
Re: [Samba] Problem sysvolreset Rowland Penny via samba <samba@lists.samba.org> - 2017-03-07 21:30 +0100
Re: [Samba] Problem sysvolreset Björn JACKE via samba <samba@lists.samba.org> - 2017-03-20 15:30 +0100
Re: [Samba] Problem sysvolreset Rowland Penny via samba <samba@lists.samba.org> - 2017-03-20 15:50 +0100
Re: [Samba] Problem sysvolreset "L.P.H. van Belle via samba" <samba@lists.samba.org> - 2017-03-20 16:40 +0100
Re: [Samba] Problem sysvolreset Rowland Penny via samba <samba@lists.samba.org> - 2017-03-20 17:30 +0100
Re: [Samba] Problem sysvolreset Rowland Penny via samba <samba@lists.samba.org> - 2017-03-21 16:50 +0100
Re: [Samba] Problem sysvolreset "L.P.H. van Belle via samba" <samba@lists.samba.org> - 2017-03-21 17:20 +0100
Re: [Samba] Problem sysvolreset Rowland Penny via samba <samba@lists.samba.org> - 2017-03-21 17:40 +0100
csiph-web