[OpenAFS] New setup. Strange permission denied! For *some* of my users. :(
Michael Joyner ᏩᏯ
mjoyner@vbservices.net
Fri, 08 May 2009 21:21:25 -0400
This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
--------------enig768CC80A9974F459C0009E6F
Content-Type: multipart/alternative;
boundary="------------010402020704040501060802"
This is a multi-part message in MIME format.
--------------010402020704040501060802
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
New setup. Strange permission denied! For *some* of my users. :(
New afs server at afs01 in a brand new cell. Ubuntu 9.04 X64. Used the
new cell scripts, etc.
Likewise installed.
pts added selected users based on likewise UIDs
created user volumes
created and fs setcacl user volumes
user #1 can login to client station, do a kinit, aklog and access files.
user #2 can login to client station, do a kinit, aklog and can NOT
access files. :(
(User #2 tried even as a loop backed client on the server!)
tokens command reports back correct UID for user.
klist output looks correct.
groups shows user gets a PAG.
user #2 is treated as a guest?
I verified fs listacl settings.
I verified ptx examine settings.
I made sure UIDs matched up between Likewise, filesystem, pts and fs
listacl.
My kerb5 servers are W2K8.
What do I need to do to try and locate the issue?
--------------010402020704040501060802
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
</head>
<body bgcolor=3D"#ffffff" text=3D"#000000">
<font face=3D"Aboriginal Sans">New setup. Strange permission denied! For
*some* of my users. :(<br>
<br>
New afs server at afs01 in a brand new cell. Ubuntu 9.04 X64. Used the
new cell scripts, etc.<br>
Likewise installed.<br>
pts added selected users based on likewise UIDs<br>
created user volumes<br>
created and fs setcacl user volumes<br>
user #1 can login to client station, do a kinit, aklog and access files.<=
br>
user #2 can login to client station, do a kinit, aklog and can NOT
access files. :(<br>
(User #2 tried even as a loop backed client on the server!)<br>
tokens command reports back correct UID for user.<br>
klist output looks correct.<br>
groups shows user gets a PAG.<br>
user #2 is treated as a guest? <br>
I verified fs listacl settings.<br>
I verified ptx examine settings.<br>
I made sure UIDs matched up between Likewise, filesystem, pts and fs
listacl.<br>
My kerb5 servers are W2K8.<br>
What do I need to do to try and locate the issue?<br>
<br>
</font>
</body>
</html>
--------------010402020704040501060802--
--------------enig768CC80A9974F459C0009E6F
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAkoE2pUACgkQtX52dpJWQ8co+QCfa6nIm0qoob+/5zh5EPe4Cdck
0aMAnRVK5Kj44is2YZIbQMTNaMS621Bh
=N+z7
-----END PGP SIGNATURE-----
--------------enig768CC80A9974F459C0009E6F--