RE: OT Linux problem
Date: Tue, 21 Oct 2008 09:59:20 +0100
You can use getent on boxes where LDAP/AD authentication is enabled. It will give details of gid and uid in LDAP/AD. See man page of getent for more details.
usage: getent database [ key ... ]
bash-3.00$ getent passwd guptav
bash-3.00$ getent group | grep dba
bash-3.00$ getent group | grep guptav
From: oracle-l-bounce_at_freelists.org on behalf of Jared Still
Sent: Tue 21/10/2008 01:46
To: Oracle-L Freelists
Subject: Re: OT Linux problem
Windows authentication through is enabled on this server.
A user can logon with the same account that is used to logon to Windows servers.
There was a dba group in Active Directory.
ls -ldn revealed that rather than group 300, files set to dba by root were being created with the GID from Winbind.
resolution: rename the AD group from dba to ldba (not being used anyway)
Certifiable Oracle DBA and Part Time Perl Evangelist
On Mon, Oct 20, 2008 at 4:11 PM, Jared Still <jkstill_at_gmail.com> wrote:
I seem to be experiencing one of 2 things here:
- I can't see something right in front of me
- Permissions are not working as expected.
Create a directory as root, change owner to oracle:dba, and enable group write permissions. as root: # mkdir -p exp/pr09 # chown -R oracle:dba exp # chmod -R g+w exp # ls -ld exp exp/pr09 drwxrwxr-x 3 oracle dba 4096 Oct 20 16:04 exp drwxrwxr-x 2 oracle dba 4096 Oct 20 16:04 exp/pr09 Try to create a file in new directory - fails as jkstill:Received on Tue Oct 21 2008 - 03:59:20 CDT
> touch x
touch: cannot touch `x': Permission denied
> rm /tmp/x
> touch /tmp/x
> ls -l /tmp/x
-rw-r----- 1 jkstill dba 0 Oct 20 16:06 /tmp/x
> ls -ld .
drwxrwxr-x 2 oracle dba 4096 Oct 20 16:04 . as root: # chmod o+w exp/pr09 as jkstill:
> touch x
> ls -ld x
-rw-r----- 1 jkstill dba 0 Oct 20 16:08 x Any clues as to why group permissions are not allowing me to write to this directory? I'm fully prepared to feel stupid... Jared Still Certifiable Oracle DBA and Part Time Perl Evangelist