Access Control in a CIFS Environment
For CIFS access, Windows ACL supported file access management is performed.
Windows' Access Based Enumeration (ABE) is supported. With ABE, directories and files can be hidden to users
who do not have access privileges. ABE can be enabled or disabled with ETERNUS Web GUI or ETERNUS CLI.
The supported ABE partly differs in specification from the actual Windows ABE. Directories and files without read
access privilege are hidden even if write access privilege or special access privilege is set.
If the same name is used for the local user and the local group without case sensitivity when a local user is
registered in ACL, access control may not be set correctly for Windows.
IMPORTANT
During the configuration phase
The owner and group settings of a shared folder do not automatically set the access privileges for
subfolders and files under that shared folder. For subfolders and files under the shared folder, manually
set the appropriate access privileges as necessary.
Caution
During the operation phase
When adding ACL user from Windows, a Security ID (SID) may be displayed instead of the name that is
specified from other Windows clients. If this occurs, disconnect the network drive and wait for a while.
After rebooting the network drive, the specified name is displayed.
Access Control in an NFS Environment
For NFS access, the NFS access control supported by each of the NFS versions can be configured in addition to
the permissions.
If NSF access control is configured, that configuration has a higher priority than permissions.
POSIX ACL is used for NFSv3 access control.
Caution
During the operation phase
NFS clients using NFSv4 to mount the shared folder cannot execute commands that set or display POSIX
ACLs for the shared folder.
4. NAS Functions
Access Control (ACL Function)
182
Design Guide
Содержание ETERNUS DX S5 Series
Страница 335: ......