I set up a writable share directory "/home/net/share" with acl like this:

sudo mkdir -p "/home/net/share"
sudo setfacl -m "u:localuser:rwx,u:remoteuser:rwx,g:users:rwx" "/home/net/share"

My /etc/samba/smb.conf looks like this:

[global]
workgroup = w
server string = server
security = user
load printers = no
log file = /var/log/samba/%m.log
max log size = 50
dns proxy = no 
printing = bsd
printcap name = /dev/null
disable spoolss = yes

encrypt passwords = true
invalid users = nobody root

follow symlinks = yes
wide links = yes

[share]
comment = Writable by localuser and remoteuser
path = /home/net/share
valid users = remoteuser
read only = no
public = no
printable = no

Locally, localuser and remoteuser have user accounts and smbpasswds and can both read, create and delete files in /home/net/share.

But when I log on from a different machine (like this:

sudo mount -t cifs //server/share mountpoint/ -o username=remoteuser

), I get "Permission denied" both when trying to create directories and files, oddly though, it does create files (not directories!) despite these messages!

How can I get this working?