How to mix users with AD and Truenas local user?

A

alek_d

Dabbler
Joined
May 30, 2021
Messages
10
Hi all. I trying without sucsses to mix ad users and truenas users and SMB. What is my goal and what is my setup?
TrueNAS 13 U4:
  • truenas have joined to active directory
  • trusted domain checkbox is checked. There is 2 domains let say it admin.local and admin.com
  • users from both domains use diferent datasets via SMB ACL set from windows machines
What I've try :
  • create dataset for backup: let say it \\truenas\backupdataset
  • create local truenas user: let say it truenas\backupuser.
  • give permision on dataset only for user truenas\backupuser and group truenas\backupuser
  • create share via Sharing > Windows Shares (SMB)
  • acsess share via server in AD - here is BIG red flag. I can't. I was expected when give permision on dataset and try to browse it to prompt me for user and pass. But windows sad: There is problem accsesing \\truenas\backupdataset and don't prompt me for user i pass.
ACL info:
user: truenas\backupuser
group: truenas\backupuser
ACL preset: restricted
Auxillary Group: bultin_users

The main goal is to have user for backup purpose that can read and write backup job on dataset. Becouse backup software is not under my control all I know about it that is use SMB for backup. Backup user must be outside active directory.
If I missed some info please ask.
I shall be very gratefull for any help
 
sretalla

sretalla

Powered by Neutrality
Moderator
Joined
Jan 1, 2016
Messages
9,703
alek_d said:
There is problem accsesing \\truenas\backupdataset and don't prompt me for user i pass.
Click to expand...
Have you already connected to another share on that TrueNAS server on that client?

Seems that's the case and that's your problem... you can't attach to a single SMB host with more than one set of credentials (that's a windows limitation, not SAMBA/TrueNAS).
 
A

alek_d

Dabbler
Joined
May 30, 2021
Messages
10
sretalla said:
Have you already connected to another share on that TrueNAS server on that client?

Seems that's the case and that's your problem... you can't attach to a single SMB host with more than one set of credentials (that's a windows limitation, not SAMBA/TrueNAS).
Click to expand...
Thank you for answer. I have tried from PC that is never be connect to truenas in this case message is Window cannot access \\ip of truenas\backupdataset 0x80070005 access is denied
 
sretalla

sretalla

Powered by Neutrality
Moderator
Joined
Jan 1, 2016
Messages
9,703
alek_d said:
I have tried from PC that is never be connect to truenas in this case message is Window cannot access \\ip of truenas\backupdataset 0x80070005 access is denied
Click to expand...
And still no prompt for credentials?

It may be worthwhile to look at the share settings you're using to see if there's something there which would prevent connection (without even a prompt).
 
A

alek_d

Dabbler
Joined
May 30, 2021
Messages
10
Yes. No prompt. I was delete dataset, create it again, unshare and share folder many times, change the ACL presset.
I am lost in SMB univers :(
 
You must log in or register to reply here.

Similar threads

Artbananza
SMB share ACL with AD users and groups
Replies
6
Views
7K
Terabyte
T
X
ad users how to creating truenas account?
Replies
0
Views
396
xcyhxx
X
C
SMB with active directory: cannot see user and group in GUI
Replies
2
Views
834
Chapo
C
S
TrueNAS AD integration - use UIDNumber instead of SID for AD users
Replies
2
Views
892
scook2000
S
dj_jazzn
SOLVED Troubleshooting rysnc backup failed (scheduled rsync push from FreeNAS to Raspberry pi)
Replies
5
Views
5K
dj_jazzn
dj_jazzn
Top