SMB share - macOS - timemachine

[Kennyvb8]

Hello
i dont know where else to ask for help!

i would like to share smb to macOS. it works wonders. altho i would like to timemachine (backup) to smb aswell
i can connect just fine to the shares, but smb/macOS doesnt prompt me for username and password, when adding the share to timemachine. it does prompt me when i connect normally (cmd+k in finder or simpley select it)
console on the macOS i get these errors:

Code:

"Authentication failed for smb://kenny@10.0.2.20/Timemachine"

Code:

"username and password are incorrect in the keychain or not avalible"

it doesnt seem to add them by it self. i've been googleing for few days now, and all i found was that smb.conf should be editet with this:

Code:

ea support = yes
fruit:aapl = yes
fruit:time machine = yes
durable handles = yes
kernel share modes = no
posix locking = no

and the share with this:

Code:

vfs objects = catia fruit streams_xattr
ea support = yes

it does regoinize it as a timemachine disk.

but can't figurer out if it's samba that doesnt prompt for username/password or something in macOS.
it works wonderfull in afp and it prompts etc. just not on smb.

so was wondering if anyone got it working ? freenas+smb+timemachine ?

FreeNAS-11.1-U5


sorry for spelling etc. english not my native language

 

[anodos]

It doesn't work yet. We're partially there code-wise, but there are some changes that still need to be made regarding mdns.

 

[itskando]

It doesn't work yet. We're partially there code-wise, but there are some changes that still need to be made regarding mdns.

Are your comments related to this?
If not, what should we follow such that we become notified of completion?

 

[anodos]

Are your comments related to this?
If not, what should we follow such that we become notified of completion?

That redmine ticket will be the authoritative source for information about the status of the feature request.

 

[Jacopx]

Is there some news?

 

[itskando]

Is there some news?

Please see above quotes:

Are your comments related to this?

That redmine ticket will be the authoritative source for information about the status of the feature request.

.

Thus,

Follow news on: https://redmine.ixsystems.com/issues/23359

and, if you're curious, you can find the following there:

The patches to support time machine over SMB should already be in 11.1-U6. What needs to happen is:

1) Enable vfs_fruit on all SMB shares
2) set the parameter "fruit:time machine = yes" as an auxiliary parameter for the SMB share.
3) restart the SMB service via the UI.

.

I haven't done any of this yet,
so you might need to refer to the OP as to whether
anything he mentioned was additionally necessary.

 

[Kennyvb8]

Is there some news?

as of 11.2 Release i used the same AUX and now it works!

 

[seanm]

Has anyone trying restoring *from* an SMB FreeNAS Time Machine?

 

[itskando]

Has anyone trying restoring *from* an SMB FreeNAS Time Machine?

 

[gdarends]

I haven't been able to get time machine working for me.
I have a Macbook running High Sierra.
I have FreeNAS 11.2-U2.1 running.
Created a dataset which is nested under another dataset. ACL Type = Mac, User/Group = gd/gd
Created a SMB share, enabled Time Machine, applied vfs_fruit and vfs_streams_xattr and added fruit:time machine = yes
I added vfs_fruit and vfs_streams_xattr to all SMB shares as well.

But when selecting the network disk and filling in the correct credentials, I get the following message.
I also browsed the network drive and tried to copy a file to it. But I can't.

 

[seanm]

The mistake might be setting ACL Type = Mac. Those ACL types are confusing. "Mac" doesn't mean Mac, it means AFP. And "Windows" doesn't mean Windows, it means "SMB".

 

[anodos]

I haven't been able to get time machine working for me.
I have a Macbook running High Sierra.
I have FreeNAS 11.2-U2.1 running.
Created a dataset which is nested under another dataset. ACL Type = Mac, User/Group = gd/gd
Created a SMB share, enabled Time Machine, applied vfs_fruit and vfs_streams_xattr and added fruit:time machine = yes
I added vfs_fruit and vfs_streams_xattr to all SMB shares as well.

But when selecting the network disk and filling in the correct credentials, I get the following message.
I also browsed the network drive and tried to copy a file to it. But I can't.



View attachment 29049

This looks like a permissions error. The account you are using for time machine will need sufficient rights to traverse to the root of the Share, and the ACL equivalent of "read|write|modify" for the share that is used as a time machine target.

 

[gdarends]

I've noticed that there is also "Share Type = Mac" on the dataset "Edit Options". I changed this to "Windows" and "ACL Type" also to "Windows".
Restarted SMB share, but no changes.

I've checked my permissions, and they seem fine.

 

[anodos]

Post output of getfacl /mnt/storage/persistent/backup/timemachine-gmac

 

[gdarends]

Looks fine here:

Code:

[gd@nas /mnt/storage/persistent/backup]$ getfacl /mnt/storage/persistent/backup/timemachine-gmac
# file: /mnt/storage/persistent/backup/timemachine-gmac
# owner: gd
# group: gd
            owner@:rwxpDdaARWcCos:fd-----:allow
            group@:rwxpDdaARWcCos:fd-----:allow
         everyone@:r-x---a-R-c---:fd-----:allow

 

[anodos]

Post output of following

Code:

getfacl /mnt/storage/persistent/backup
getfacl /mnt/storage/persistent

 

[anodos]

Let's also make it explicitly fail if we're trying to authenticate with the wrong user:
setfacl -x 2 /mnt/storage/persistent/backup/timemachine-gmac

 

[gdarends]

Code:

[gd@nas ~]$ getfacl /mnt/storage/persistent/backup
# file: /mnt/storage/persistent/backup
# owner: root
# group: wheel
            owner@:rwxp--aARWcCos:-------:allow
            group@:r-x---a-R-c--s:-------:allow
         everyone@:r-x---a-R-c--s:-------:allow
[gd@nas ~]$ getfacl /mnt/storage/persistent
# file: /mnt/storage/persistent
# owner: root
# group: wheel
            owner@:rwxp--aARWcCos:-------:allow
            group@:r-x---a-R-c--s:-------:allow
         everyone@:r-x---a-R-c--s:-------:allow
[gd@nas ~]$ setfacl -x 2 /mnt/storage/persistent/backup/timemachine-gmac
[gd@nas ~]$ getfacl /mnt/storage/persistent/backup/timemachine-gmac
# file: /mnt/storage/persistent/backup/timemachine-gmac
# owner: gd
# group: gd
            owner@:rwxpDdaARWcCos:fd-----:allow
            group@:rwxpDdaARWcCos:fd-----:allow

 

[gdarends]

Now I get the following error:

 

[gdarends]

I found the issue. I was using the local account named "gd". But needed to use the AD account named "gd"