NethServer Version: 7.4.1708 (Final)
Module: Samba (et al.)
TL;DR: I’m trying to run a system service as a non-root user, but this service needs access to files in the samba shares (/var/lib/nethserver/ibay/) which are owned by AD groups and I can’t figure out how to do that.
I’m not familiar enough with domains on Linux and sssd to know if I’m making this unnecessarily difficult, but systemd definitely only allows running services as local users. I have successfully configured k5start as a (system) service to get a current ticket for headless@my.domain under the local user headless_local. However, this doesn’t seem to grant access to the desired files (despite headless@my.domain being a member of the owner group etc.).
Does anyone have any ideas? Although not ideal, it currently works to simply run the service as root.
Thanks & Merry Christmas,
Will