Hi there,
Recently we migrated from FreeNAS running on a spare computer to a TrueNAS Mini X+. Since then, however, I can't get AD Users that aren't in the Domain Admins group to access any shares.
I searched the Forums and found related topics, but nobody ever posted as resolution to the problem:
Migration was done by uploading the existing system's configuration to the new one, and then using Snapshots and Replication to sync the data between the two. Everything is sorted out with the Active Directory, NetBIOS, and HostNames so they aren't in conflict, and I can see all of my AD Users and Groups when going to modify the Permissions on the various Datasets in the Pool. Running returns me all of the groups on the AD, so I know everything is connected up properly.
I've read the documentation, searched the forums, and tried everything I can think of:
Does anyone have any advice on where I could check next?
Thanks for any and all advice!
-BT
Recently we migrated from FreeNAS running on a spare computer to a TrueNAS Mini X+. Since then, however, I can't get AD Users that aren't in the Domain Admins group to access any shares.
I searched the Forums and found related topics, but nobody ever posted as resolution to the problem:
- https://www.truenas.com/community/t...e-directory-users-cannot-access-shares.71068/
- https://www.truenas.com/community/threads/cannot-access-freenas-share.80679/
Migration was done by uploading the existing system's configuration to the new one, and then using Snapshots and Replication to sync the data between the two. Everything is sorted out with the Active Directory, NetBIOS, and HostNames so they aren't in conflict, and I can see all of my AD Users and Groups when going to modify the Permissions on the various Datasets in the Pool. Running
Code:
getent group
I've read the documentation, searched the forums, and tried everything I can think of:
- Deleting the shares and datasets, and recreating them manually
- Pulled it off the AD, deleted the Computer from it, and recreated it - both with and without previously creating the computer object in there.
- Used the Share ACL both instead of, and also in addition to the Filesystem ACL
- Checked/Set/Changed the permissions to the shares through Windows (Authenticated as a Domain Admin)
- Set the ACL to Everyone with only Read, Modify, and Full Control
Does anyone have any advice on where I could check next?
Thanks for any and all advice!
-BT