[OpenAFS] OpenAFS groups distrubution under windows client

Hartmut Reuter reuter@rzg.mpg.de
Fri, 01 Aug 2008 10:00:51 +0200 

Has nothing to do with Windows. Generally the membership of a user in=20
groups is evaluated only once when the connection to the fileserver gets =

established. A new token enforces a new connection. So whenever you add=20
some one to a group or remove some one from a group that has an effect=20
only after the user has reauthenticated unless he didn't have any=20
connection to the fileserver before.

Hartmut

Lars Schimmer wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>=20
> Hi!
>=20
> Just to ask/be sure:
> User a is online under windows, OpenAFS client 1.5.51 and got a token,
> browsing the OpenAFS filespace.
> User a try to access a directory without the propper right, got no
> access and mourn at me.
> I set the User a into the correct group to access that directory.
> But even after 1h or 2h, User a still cannot access that directory.
>=20
> But if User a destroy token 10 min after I added him to the right group=

> and obtain a new token, he could access the dir right afterwards.
>=20
> How long does it take under windows til the right group information is
> distributed?
> Or is this a bug?
>=20
> MfG,
> Lars Schimmer
> - --
> - -------------------------------------------------------------
> TU Graz, Institut f=FCr ComputerGraphik & WissensVisualisierung
> Tel: +43 316 873-5405       E-Mail: l.schimmer@cgv.tugraz.at
> Fax: +43 316 873-5402       PGP-Key-ID: 0x4A9B1723
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.9 (GNU/Linux)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
>=20
> iEYEARECAAYFAkiSwMsACgkQmWhuE0qbFyNmDwCdG/XVzrkuaunP62HBMIGErj8b
> j6EAn1tmAf/tQcsjrT++9ekiSsSALa4h
> =3D+IdP
> -----END PGP SIGNATURE-----
> _______________________________________________
> OpenAFS-info mailing list
> OpenAFS-info@openafs.org
> https://lists.openafs.org/mailman/listinfo/openafs-info


--=20
-----------------------------------------------------------------
Hartmut Reuter                  e-mail 		reuter@rzg.mpg.de
			   	phone 		 +49-89-3299-1328
			   	fax   		 +49-89-3299-1301
RZG (Rechenzentrum Garching)   	web    http://www.rzg.mpg.de/~hwr
Computing Center of the Max-Planck-Gesellschaft (MPG) and the
Institut fuer Plasmaphysik (IPP)
-----------------------------------------------------------------