Hello,
ive allready posted my Questions on other forums but in 3 days ive got only 1 answer witch sums up as follows: “Just abadon the built in Home-Shares and do it manuell”. Since maybe i whant to use some AD Auth, not the answer i was hoping for.
Im on a virtual TrueNAS Scale on Proxmox, Im able to create readeble and writeable shares. But it works not like i would wish for. My goal is to mount only 2 shares, home and data, and for both some questions:
home:
For the homeshare i have allready setup a dataset namend “homes” and createt the share with the option set “use as home-share” set. Now its reable under smb://TrueNAS.local/homes or smb://TrueNAS.local/username.
Is it possible to make it accable under smb://TrueNAS.local/home and keep the dataset namend “homes”? I would like to keep the Linux like “standart” names.
Then i want as user1 access to the home of user2. user1 is an aux groupmember of user2 and the Home Directory Permissions are all set active for the group. How do i access user2 homeshare via smb? smb://TrueNAS.local/homes/test2 dose not function.
Update:
When im enable shell login for the user1 im able to read and modify the home of user2 but i still dont able to access user2s home sharevia smb.
data:
I want only one additionaly share to home, “data”. Name is up to debate. Ive set up a dataset and share. Now ive created sub datasets under data: dataset1, dataset2, ect.
To every dataset i want to create 2 groups “dataset(n)-RW” and “dataset(n)-RO”
I want that only users who are part of one of these groups are able to see and access the dataset. I do not want to set up shares to any subdataset so “Access Based Share Enumeration” is not an option.
But the sub datasets are allways showen indipendetly of group membership. ive tried UNIX permissions 770 (via GUI) and NFS ACL with only metions owner@ root Full Contoll and group@ root Modify. But i still see the dataset at all times in die “data” share
How do i archive my goal to make the datasets only visible when the user is part of one of the matching groups?
Are the other options/best practices?
Thanks in advance.