Bug 34925

Summary: User is unable to access the home share
Product: UCS@school Reporter: Stefan Gohmann <gohmann>
Component: Samba 4Assignee: Samba maintainers <samba-maintainers>
Status: RESOLVED DUPLICATE QA Contact:
Severity: normal    
Priority: P5    
Version: UCS@school 3.2 R2   
Target Milestone: ---   
Hardware: Other   
OS: Linux   
What kind of report is it?: --- What type of bug is this?: ---
Who will be affected by this bug?: --- How will those affected feel about the bug?: ---
User Pain: Enterprise Customer affected?:
School Customer affected?: ISV affected?:
Waiting Support: Flags outvoted (downgraded) after PO Review:
Ticket number: Bug group (optional):
Max CVSS v3 score:

Description Stefan Gohmann univentionstaff 2014-05-23 07:41:50 CEST 
In S4 singlemaster environment a school user is unable to access the home share.

root@master201:~# univention-ldapsearch uid=s1 -LLL homeDirectory
dn: uid=s1,cn=schueler,cn=users,ou=School1,dc=autotest201,dc=local
homeDirectory: /home/School1/schueler/s1

root@master201:~# ls -la /home/School1/schueler/s1
insgesamt 24
drwx--x--x  4 s1   Domain Users School1 4096 23. Mai 01:41 .
drwxr-xr-x  3 root root                 4096 23. Mai 01:41 ..
-rw-------  1 s1   Domain Users School1 3184 23. Mai 01:41 .bashrc
-rw-------  1 s1   Domain Users School1  675 23. Mai 01:41 .profile
drwxr-xr-x  2 s1   Domain Users School1 4096 23. Mai 01:41 .univention-skel
-rw-------  1 s1   Domain Users School1    0 23. Mai 01:44 .univention-skel.lock
drwx------ 11 s1   Domain Users School1 4096 23. Mai 01:41 windows-profiles
root@master201:~# univention-s4search cn=s1 | egrep -i "(dn: |home)"
dn: CN=s1,CN=schueler,CN=users,OU=School1,DC=autotest201,DC=local
homeDrive: I:
homeDirectory: \\master201\s1
root@master201:~# smbclient -U s1%univention //master201/s1 -c ls
Domain=[AUTOTEST201] OS=[Unix] Server=[Samba 4.1.0-Debian]
NT_STATUS_ACCESS_DENIED listing \*
root@master201:~# smbclient -U s1%univention //master201/sysvol -c ls
Domain=[AUTOTEST201] OS=[Unix] Server=[Samba 4.1.0-Debian]
  .                                   D        0  Fri May 23 01:04:59 2014
  ..                                  D        0  Fri May 23 01:50:16 2014
  autotest201.local                   D        0  Fri May 23 01:05:12 2014

                39206 blocks of size 262144. 26832 blocks available
root@master201:~#
Comment 1 Stefan Gohmann univentionstaff 2014-05-23 07:46:31 CEST 
After giving read access to the primary group a listing is possible:

root@master201:~# chmod g+r /home/School1/schueler/s1
root@master201:~# smbclient -U s1%univention //master201/s1 -c ls
Domain=[AUTOTEST201] OS=[Unix] Server=[Samba 4.1.0-Debian]
  .                                   D        0  Fri May 23 01:41:32 2014
  ..                                  D        0  Fri May 23 01:41:32 2014
  .univention-skel.lock               H        0  Fri May 23 01:55:38 2014
  .univention-skel                   DH        0  Fri May 23 01:41:32 2014
  windows-profiles                    D        0  Fri May 23 01:41:32 2014
  .profile                            H      675  Fri May 23 01:41:32 2014
  .bashrc                             H     3184  Fri May 23 01:41:32 2014

                39206 blocks of size 262144. 26829 blocks available
root@master201:~#
Comment 2 Stefan Gohmann univentionstaff 2014-05-23 09:04:52 CEST 
It works with the new listener from Bug #34835.

*** This bug has been marked as a duplicate of bug 34835 ***