You can make a difference in the Apple Support Community!

When you sign up with your Apple Account, you can provide valuable feedback to other community members by upvoting helpful replies and User Tips.

Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

macOS Mojave with server 5.7.1file sharing Group permissions problem :-(

hi

i have macOS Mojave with server 5.7.1 on Mac pro(Late 2013).

I'm running an updated server for the latest version.

To my question I did not find an answer through Google ...


I do several tests before moving the server to work.

The test on the server is performed from several computers, mainly from operating system 10.12.


I set up 3 users (A + B + C) and 2 groups (E + F) to check permissions Unfortunately permissions do not work properly.

And there seems to be a problem with the ACL and the permissions do not pass automatically.

The entrance was examined in two situations: AFP + SMB.


for example:

When User A logs on to the server and builds a folder / file, checking permissions on the file from the server is saved to User A and not to the Group Name (Group E).

Group: wheel - Permission: read only

All: everyone - permission: read only.


When user B enters the server and builds a folder / file, checking permissions on the file from the server is saved to user name B and not to the group name (group E).

Group: wheel - Permission: read only

All: everyone - permission: read only.



Arrange permissions through: System Prepernces / File Sharing and manual permissions changes: Apple Premissions to Enclosed Items.

Everything works out ... until the next user change.


I would be happy for help an experienced server user


Best regards

Benny

MacBook Air, macOS Sierra (10.12.6), Macintosh Plus,PB 400Hhz black, PB 867, iMac G3, OSX Server5

Posted on Oct 8, 2018 9:18 AM

Reply
Question marked as Top-ranking reply

Posted on Oct 9, 2018 6:01 AM

After searching Google I found:

That version 5.4 had a "storage" tab that could be modified to ACL permissions. Unfortunately in version 5.7.1 the tab no longer exists.


version 5.7.1:

User uploaded file


version 5.4(pict from google 5.3.55):

User uploaded file


If there is a "server specialist"?

I would be happy to help


Best regards

Benny

118 replies

May 17, 2019 10:36 AM in response to Benny2g

Hi


I had exactly the same problem. And it was solved by typing the command lines described above. Thanks to all of you on this forum. However I have another issue: everytime I update a shared file, a directory is created. So I let you imagine how many directories I have after a full week...


For example I use everyday an excel file which is called Freelance.xlsx and when I edit it then save it, a folder called Freelance.xlsx.sb-9063f676-Gk1NBI is created (the letters after .xlsx change everytime). Inside this folder I can find a small file without extension. Name is E1A23200, weight is 59ko. (Name change everytime also). It's like a temporary folder but it never disappear.


Any idea about this problem? Does someone know how to avoid the folder creation or at least hide automatically those new folders?


Thanks again for you help guys,



May 17, 2019 12:23 PM in response to zygoatt

This is an Office issue. I had some success with fiddling with the Autosave options and switching from AFP to SMB (even though I would prefer to use AFP for a number of reasons).


Here's a rabbit hole for you to go down:


https://social.technet.microsoft.com/Forums/ie/en-US/50d3d7fb-f9c1-49b3-86e3-f9ede62b33d0/mac-2016-word-when-saving-creates-a-folder-example-nameoffolderdocxsb98c2cb88xxxxxx?forum=Office2016forMac

May 17, 2019 12:31 PM in response to Ryan Burkholder

Here's my guess after 10 years of working in and with Apple. I am sure file sharing will continue in the same way that it does with Windows. It will always be part of the OS, but the administration tools are already gone. AFP hasn't been updated in forever, and will eventually disappear. SMB will not receive any real development resources, so it will probably work okay for basic needs. Essentially, relying on a Mac file server for any more than five or so users is a fool's errand.


At this point, we plan to phase out larger deployments of Mac file servers and replace them with Synology NAS's. These devices present their own problems and idiosyncrasies, but the Mac platform is dying (no, it really is), and Mac file sharing has already received some death blows. At least we know Synology will always be committed to local file sharing!


Long live cloud-connected iOS devices for everything! (rolls eyes emoji)


May 23, 2019 2:43 AM in response to ddssgg

Sorry to jump on this but sounds like these are the same issues as I'm facing. We've upgraded to Mojave and by using TinkerTool, all new folders are inherting the group permissions that I created. However no matter what I do, I can't get existing folders to pick up the inherit setting. This can be sen by the check box in TinkerTool

May 23, 2019 11:02 AM in response to ddssgg

Well selecting the permissions I went through all permissions so that all were green.


I also propogated them, I did try the explicit in one of my attempts but wasn't sure what it was doing to be honest.


I have found later today that creating a new folder, copying over existing folders and propagating again, it then does allow new folders to be made inside existing folders and works.


I'll be testing further tomorrow

May 23, 2019 12:31 PM in response to carlsb

I have had the exact same problem, running 10.14 on two different Mac mini's sharing a folder living on an external SSD via SMB. If a remote user creates a folder or copies and pastes an existing folder in the shared folder, they are unable to delete it.


Yesterday, after updating to 10.14.5, smb sharing seems to go haywire. Remote user machine finder would freeze when trying to copy and paste files. At one point the mini sharing the folder was unable to turn off file sharing and sharing preferences became inaccessible.


I also spent several hours on the phone with Apple support with no solution for the inability of users to delete folders.



May 23, 2019 12:46 PM in response to carlsb

Were you able to get the permissions and inheritance fixed using command line or TinkerTool?


Are these issues seemingly random?


If yes to both of the above, then you may be having the exact same problem I had. After hours of testing and reapplying permissions, we just went back to AFP for a 10.14 file server. That totally fixed the issue. We were starting to deploy all servers running SMB only, and only ran into this issue once. Try making the share AFP-only and see if that fixes it.

May 24, 2019 10:14 PM in response to Kinneytr

Hi Kinney


I have a similar issue but on Mojave after I migrated from Snow Leopard using Migration Assistant. I just migrated system and Network settings and one standard user. I created the administrative user from scratch using my Apple ID. This is just on an iMac and not Mac OS Server but it really sounds the same.


The shared folders migrated but I found I could no longer edit sharing permissions nor remove shared folders in System Preferences > Sharing.


I contacted Apple Care but they seemed clueless and suggested I wipe the machine and start again from scratch which I am reluctant to do as it is a brand new computer which I spent a lot of time setting up. They say:


"When you used the migration assistant to migrate the use, you have

bought the old Open Directory to the new computer and it seems to have

issues.


Removing / replacing the Open Directory is not recommended


Erasing and reinstalling macOS clean, setting up all users manually and using Time

Machine application (definitely not any assistants) to recover just the

user data (nothing else) is recommended"


Do you think the Directory Utility steps you listed will help without creating issues elsewhere?


The only thing I need to do is reset Sharing to nothing so I can create the shared folders from scratch.


Thanks


May 25, 2019 11:10 AM in response to tarteauxpommes

I am not the OD expert at my work, but this sounds like an issue I faced recently. I made the mistake of upgrading a 10.10 server running OD to 10.13 without doing the intermediate step of upgrading to 10.11 first.


If you do this, there is a hack (that I won't tell you about) that will allow you to get most of the settings from the original Server setup to carry over from 10.10. to 10.12+. But, just never do this when OD is involved.


The senior tech and I spent hours trying to fix the OD users as authentication would work for some users and not others. Ultimately, we started from scratch. There were seven users and straightforward file permissions. If there is one hard lesson I have learned over the years, it's that rebuilding a server from a fresh install always yields a better result than hammering on an issue with no known fix.


In serverville, it's also recommended to have a fresh install anyway. Yes, I know that upgrades and migrations often work just fine (I have done literally thousands), but if the setup is mission critical, then isn't it worth it?


Also, I would advise against using an Apple ID for an administrator account. I have seen too many iCloud/local user glitches that turned ugly. My guess is that this Apple ID login-as-local user was created for people were too confused by having both an Apple ID AND a local user account AND were prone to forgetting their passwords. It's a layer of complexity you don't need.


Lastly, not being able to delete folders in Sharing is something I have seen a few places too. I remember that some restarts, turning off and on services, and generally fiddling allowed me to finally remove those folders. (Another reason why deploying a new Apple file server in 2019 is NOT a good idea. Removing a folder from a file share is a fundamental process that should work consistently.)


Good luck.

May 29, 2019 10:54 AM in response to Benny2g

Hi just adding my voice to this ongoing debacle. I have a small production company and we share all of our files from one server. With Mojave we can no longer save files that have been opened remotely, we have to save them locally and then copy them over manually after the file has been closed (i.e. Photoshop PSD, Numbers, etc). I had this problem in the past and the fix was updating my ACLs, but now it seems I don't have the option to do that.


I do most of my rendering/editing on a custom built PC now... thinking now that I am more comfortable with Windows 10 I may just build a Windows server. Honestly never thought I'd be more into Microsoft than Apple :(

May 30, 2019 1:21 PM in response to Benny2g

OK so I buy TinkerTool and run the ACL Permissions section. About 15 minutes later, about 1/3 of the way done I get an error, "The operating system was unable to change the rights for a file system object via an Access Control List." "The cause of this problem is: The operation couldn't be completed. Operation not permitted."

The file it stopped on was a PDF. Nothing special.


Has anyone run into this?

Yes I know this is an error thrown by TinckerTool. Just wanted to check here before going to TT support.


Thanks in advance.

macOS Mojave with server 5.7.1file sharing Group permissions problem :-(

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.