Highlighted
wirewmr Absent Member.
Absent Member.
987 views

Random loss of file system rights

I'm seeing the following problem on OES2 Linux and Netware servers in (so far) 3 different environments. A user will have rights to several directories assigned via a single group object. At some point the user loses rights to one of the directories but not to the others. If we then check the "security equals" attribute on the user, the entry for the group is no longer there. We add the group again and the rights appear. A few days later the rights disappear again and we have to reassign the security equals attribute. I suspect this may be an eDirectory problem or something to do with NSS, but since it is present on both LX and NW I'm not sure where to place the question. On NW I have done DSrepair with a check of the trustees, no problems detected. I have used nss tools to rebuild the trustee lists on the NSS volumes, still no help. If this really is an eDir problem then I'll post it there, but I did not want to make multiple posts. Has anyone exlse seen this problem? Thanks for any helpful suggestions
Labels (2)
0 Likes
2 Replies
Knowledge Partner
Knowledge Partner

Re: Random loss of file system rights

Hi,

wirewmr wrote:
I suspect this may be an eDirectory problem
> or something to do with NSS, but since it is present on both LX and NW
> I'm not sure where to place the question.


It is strictly an eDirectorly "problem", but I strongly doubt the
problem comes out of eDir itself. I rather suspectsome external process
of some kind that destroys the proper group membership.

CU,
--
Massimo Rosen
Novell Product Support Forum Sysop
No emails please!
http://www.cfc-it.de
CU,
--
Massimo Rosen
Micro Focus Knowledge Partner
No emails please!
http://www.cfc-it.de
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Random loss of file system rights

On Fri, 19 Sep 2008 10:36:01 GMT, wirewmr
<wirewmr@no-mx.forums.novell.com> wrote:

>I'm seeing the following problem on OES2 Linux and Netware servers in
>(so far) 3 different environments. A user will have rights to several
>directories assigned via a single group object. At some point the user
>loses rights to one of the directories but not to the others. If we then
>check the "security equals" attribute on the user, the entry for the
>group is no longer there.


Definitly not an NSS problem. Something is mucking with the eDirectory
object and not getting it right. Post over in the eDirectory newsgroups
and we'll figure out who or what is changing the object.

By chance do you have Identity Manager running? If so, an errant policy
could be doing this.


---------------------------------------------------------------------------
David Gersic dgersic_@_niu.edu
Novell Support Forums Volunteer SysOp http://forums.novell.com

Please post questions in the newsgroups. No support provided via email.
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.