Scribd
Upload
36 views

TrueNAS Scale - Authorized Dataset

This document outlines the steps to create a dataset/share in TrueNAS Scale that is only accessible to authorized users. It includes instructions for creating a pool, dataset, users, and configuring SMB shares with specific access controls. The process involves setting permissions and access control lists to restrict access to designated users only.

Uploaded by

Rodrigo Melo
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
36 views

TrueNAS Scale - Authorized Dataset

This document outlines the steps to create a dataset/share in TrueNAS Scale that is only accessible to authorized users. It includes instructions for creating a pool, dataset, users, and configuring SMB shares with specific access controls. The process involves setting permissions and access control lists to restrict access to designated users only.

Uploaded by

Rodrigo Melo
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 1

TrueNAS Scale: Create dataset/share only

displayed & accessible to authorized users


1. Create your pool (if you haven’t already) under Storage >> Create Pool
2. Create your dataset under the pool (3 dots >> Add Dataset) and set Share Type to SMB
3. Create your new users (if you haven’t already) under Credentials >> Local Users and just
under the username, password, full name, and email (all other default settings are fine
as long as Samba Authentication is checked at the bottom)
4. Go to Shares >> Windows SMB Shares
a. Add your share by selecting the directory tree under /mnt and select your new
dataset name
b. Click Advanced Options at the bottom
c. Under Purpose change Default Share Parameters to be No presets
d. Check off Access Based Share Enumeration
e. Click Save at the bottom
f. IF YOU NEED TO EDIT THIS LATER: Go to Shares >> Windows SMB Shares and
you have to click on the name of the Share to access the options again
5. Go to System Settings >> Shell and enter the following command: net usersidlist
a. Under each user you will see the first line is something like S-1-5-21-xxxxxxxx-
xxxxxxxxx-xxxxxx-xxxxxxx – this is the SID for each user which we will need
later, make note of these SID’s
6. Go to Shares and click the title Windows SMB Shares
a. Click the 3 dots on the right of the new share you want to restrict access to
b. Click Edit Filesystem ACL
c. Delete the Group builtin_users by clicking the X as this by default gives access
to the share to anyone with a user account
d. Click the grey Add Item button
e. Under the User dropdown find your new user you want to grant access to
f. Under the Permissions dropdown change this to FULL CONTROL
g. You can optionally add additional users to the list by repeating steps D-F
h. Click the blue Save Access Control List to save your changes
7. Go back to Shares and click the title Windows SMB Shares
a. Click the 3 dots on the right of the new share you want to restrict access to
b. Click Edit Share ACL
c. Click the X beside the SID for Everyone
d. Click the grey Add button
e. Copy and paste the SID for the user you want to grant access to from Step 5
f. Under Name enter the name of the user
g. Change Permission to be FULL
h. Change the Type to be ALLOWED
i. You can optionally add additional users to the list by repeating steps D-H
j. Click the blue Save button

You might also like