Permission issue for folder with AD user

The name of the pictureThe name of the pictureThe name of the pictureClash Royale CLAN TAG#URR8PPP











up vote
0
down vote

favorite












I have a folder on a linux machine to which a cisco(ISE) device sends the backup through SFTP. The files are coming to the folder successfully but unable to view the files from the device. CISCO TAC says that its a permission issue for the user on the folder. The user is a windows AD user.



I have given the user permission to the folder by the steps below:




  1. Found the uid for the AD user.



    [ananair@cap-nwmon-01 anand]$ id uid=438611341(ananair) gid=438600513(domain users) groups=438600513(domain users)




  2. Changing ownership



    chown 438611341 /var/ISE_BACKUP




  3. Giving full recursive permission.



    sudo chmod -R 777 ISE_BACKUP




  4. Current status.



    drwxrwxrwx 2 ananair root 4096 Feb 16 04:24 ISE_BACKUP



please let me know if there is anything wrong in this







share|improve this question






















  • Is SELinux running on the server?
    – Raman Sailopal
    Feb 16 at 11:20










  • No SELinux is disabled
    – Anand S Nair
    Feb 16 at 12:45










  • I see the group ownership is roor. Although that shouldn't make a difference, but sometimes you need to change the group ownership on the directory too(as in case of apache). Try changing the group ownership by using chgrp command and then check it again.
    – Ayush Goyal
    Feb 16 at 14:18










  • Found these when i checked the log. Feb 19 03:12:05 cap-nwmon-01 sshd[24541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=10.155.220.130 user=ananair . Feb 19 03:12:06 cap-nwmon-01 sshd[24541]: pam_sss(sshd:auth): authentication success; logname= uid=0 euid=0 tty=ssh ruser= rhost=10.155.220.130 user=ananair Since the user is an AD user first there is a failure authentication and then a success. will it be due to this
    – Anand S Nair
    Feb 19 at 6:17















up vote
0
down vote

favorite












I have a folder on a linux machine to which a cisco(ISE) device sends the backup through SFTP. The files are coming to the folder successfully but unable to view the files from the device. CISCO TAC says that its a permission issue for the user on the folder. The user is a windows AD user.



I have given the user permission to the folder by the steps below:




  1. Found the uid for the AD user.



    [ananair@cap-nwmon-01 anand]$ id uid=438611341(ananair) gid=438600513(domain users) groups=438600513(domain users)




  2. Changing ownership



    chown 438611341 /var/ISE_BACKUP




  3. Giving full recursive permission.



    sudo chmod -R 777 ISE_BACKUP




  4. Current status.



    drwxrwxrwx 2 ananair root 4096 Feb 16 04:24 ISE_BACKUP



please let me know if there is anything wrong in this







share|improve this question






















  • Is SELinux running on the server?
    – Raman Sailopal
    Feb 16 at 11:20










  • No SELinux is disabled
    – Anand S Nair
    Feb 16 at 12:45










  • I see the group ownership is roor. Although that shouldn't make a difference, but sometimes you need to change the group ownership on the directory too(as in case of apache). Try changing the group ownership by using chgrp command and then check it again.
    – Ayush Goyal
    Feb 16 at 14:18










  • Found these when i checked the log. Feb 19 03:12:05 cap-nwmon-01 sshd[24541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=10.155.220.130 user=ananair . Feb 19 03:12:06 cap-nwmon-01 sshd[24541]: pam_sss(sshd:auth): authentication success; logname= uid=0 euid=0 tty=ssh ruser= rhost=10.155.220.130 user=ananair Since the user is an AD user first there is a failure authentication and then a success. will it be due to this
    – Anand S Nair
    Feb 19 at 6:17













up vote
0
down vote

favorite









up vote
0
down vote

favorite











I have a folder on a linux machine to which a cisco(ISE) device sends the backup through SFTP. The files are coming to the folder successfully but unable to view the files from the device. CISCO TAC says that its a permission issue for the user on the folder. The user is a windows AD user.



I have given the user permission to the folder by the steps below:




  1. Found the uid for the AD user.



    [ananair@cap-nwmon-01 anand]$ id uid=438611341(ananair) gid=438600513(domain users) groups=438600513(domain users)




  2. Changing ownership



    chown 438611341 /var/ISE_BACKUP




  3. Giving full recursive permission.



    sudo chmod -R 777 ISE_BACKUP




  4. Current status.



    drwxrwxrwx 2 ananair root 4096 Feb 16 04:24 ISE_BACKUP



please let me know if there is anything wrong in this







share|improve this question














I have a folder on a linux machine to which a cisco(ISE) device sends the backup through SFTP. The files are coming to the folder successfully but unable to view the files from the device. CISCO TAC says that its a permission issue for the user on the folder. The user is a windows AD user.



I have given the user permission to the folder by the steps below:




  1. Found the uid for the AD user.



    [ananair@cap-nwmon-01 anand]$ id uid=438611341(ananair) gid=438600513(domain users) groups=438600513(domain users)




  2. Changing ownership



    chown 438611341 /var/ISE_BACKUP




  3. Giving full recursive permission.



    sudo chmod -R 777 ISE_BACKUP




  4. Current status.



    drwxrwxrwx 2 ananair root 4096 Feb 16 04:24 ISE_BACKUP



please let me know if there is anything wrong in this









share|improve this question













share|improve this question




share|improve this question








edited Feb 16 at 9:54









Félicien

42819




42819










asked Feb 16 at 8:54









Anand S Nair

11




11











  • Is SELinux running on the server?
    – Raman Sailopal
    Feb 16 at 11:20










  • No SELinux is disabled
    – Anand S Nair
    Feb 16 at 12:45










  • I see the group ownership is roor. Although that shouldn't make a difference, but sometimes you need to change the group ownership on the directory too(as in case of apache). Try changing the group ownership by using chgrp command and then check it again.
    – Ayush Goyal
    Feb 16 at 14:18










  • Found these when i checked the log. Feb 19 03:12:05 cap-nwmon-01 sshd[24541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=10.155.220.130 user=ananair . Feb 19 03:12:06 cap-nwmon-01 sshd[24541]: pam_sss(sshd:auth): authentication success; logname= uid=0 euid=0 tty=ssh ruser= rhost=10.155.220.130 user=ananair Since the user is an AD user first there is a failure authentication and then a success. will it be due to this
    – Anand S Nair
    Feb 19 at 6:17

















  • Is SELinux running on the server?
    – Raman Sailopal
    Feb 16 at 11:20










  • No SELinux is disabled
    – Anand S Nair
    Feb 16 at 12:45










  • I see the group ownership is roor. Although that shouldn't make a difference, but sometimes you need to change the group ownership on the directory too(as in case of apache). Try changing the group ownership by using chgrp command and then check it again.
    – Ayush Goyal
    Feb 16 at 14:18










  • Found these when i checked the log. Feb 19 03:12:05 cap-nwmon-01 sshd[24541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=10.155.220.130 user=ananair . Feb 19 03:12:06 cap-nwmon-01 sshd[24541]: pam_sss(sshd:auth): authentication success; logname= uid=0 euid=0 tty=ssh ruser= rhost=10.155.220.130 user=ananair Since the user is an AD user first there is a failure authentication and then a success. will it be due to this
    – Anand S Nair
    Feb 19 at 6:17
















Is SELinux running on the server?
– Raman Sailopal
Feb 16 at 11:20




Is SELinux running on the server?
– Raman Sailopal
Feb 16 at 11:20












No SELinux is disabled
– Anand S Nair
Feb 16 at 12:45




No SELinux is disabled
– Anand S Nair
Feb 16 at 12:45












I see the group ownership is roor. Although that shouldn't make a difference, but sometimes you need to change the group ownership on the directory too(as in case of apache). Try changing the group ownership by using chgrp command and then check it again.
– Ayush Goyal
Feb 16 at 14:18




I see the group ownership is roor. Although that shouldn't make a difference, but sometimes you need to change the group ownership on the directory too(as in case of apache). Try changing the group ownership by using chgrp command and then check it again.
– Ayush Goyal
Feb 16 at 14:18












Found these when i checked the log. Feb 19 03:12:05 cap-nwmon-01 sshd[24541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=10.155.220.130 user=ananair . Feb 19 03:12:06 cap-nwmon-01 sshd[24541]: pam_sss(sshd:auth): authentication success; logname= uid=0 euid=0 tty=ssh ruser= rhost=10.155.220.130 user=ananair Since the user is an AD user first there is a failure authentication and then a success. will it be due to this
– Anand S Nair
Feb 19 at 6:17





Found these when i checked the log. Feb 19 03:12:05 cap-nwmon-01 sshd[24541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=10.155.220.130 user=ananair . Feb 19 03:12:06 cap-nwmon-01 sshd[24541]: pam_sss(sshd:auth): authentication success; logname= uid=0 euid=0 tty=ssh ruser= rhost=10.155.220.130 user=ananair Since the user is an AD user first there is a failure authentication and then a success. will it be due to this
– Anand S Nair
Feb 19 at 6:17
















active

oldest

votes











Your Answer







StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "106"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
convertImagesToLinks: false,
noModals: false,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);








 

draft saved


draft discarded


















StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f424559%2fpermission-issue-for-folder-with-ad-user%23new-answer', 'question_page');

);

Post as a guest



































active

oldest

votes













active

oldest

votes









active

oldest

votes






active

oldest

votes










 

draft saved


draft discarded


























 


draft saved


draft discarded














StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f424559%2fpermission-issue-for-folder-with-ad-user%23new-answer', 'question_page');

);

Post as a guest













































































Popular posts from this blog

How to check contact read email or not when send email to Individual?

Displaying single band from multi-band raster using QGIS

How many registers does an x86_64 CPU actually have?