Dear All,

My name Sekhar Hari. I am responsible for handling one of
the main and critical solaris server in my company for the BS7799
Standard documentatons. I have some queries regarding the samba
tweaking in this solaris server. My needs goes like this :

Info :
I have installed and configured Samba 3.0.x for
File Sharing purpose with all LDAP and Kerberos support with winbindd
deamon. Also I have integrated this with Windows AD for
authentication. Only the cluster heads can login to this for uploading
of documents.


Requirement :

I have a directory called Upload. And inside that
several directories called ec1, ec2, ec3, rob etc. Now the moment a
cluster leader logins in to the server using the AD credentials,
he/she can see the folder Upload. And when he/she goes inside upload,
the above folders can be seen. Here I want only the respective cluster
head who has logged in should have edit capability in ec1 folder and
other location cluster heads should have only read access to this
directory . And the same holds true for other directories as well; ie,
when an ec3 location cluster head gets into the ec3 directory only
he/she should have the write access and other cluster heads should
have only read access.

Hope my requirement is clear. How this kind of
security can be accomplished ? Would appreciate to get the steps in
detail as this is slightly urgent.

Anticipating your reply as soon as possible.

Thanks in Advance,
Sekhar H.