Problems with permission in CIFS

[BlazeStar]

Using TrueNAS-12.0-U1.1

I'm using several SMB shares.

In TrueNAS GUI, under STORAGE / POOLS : I select the corresponding dataset, and EDIT ACL.
Then I set a user and group.

When I go to SHARING / SMB : when I try to EDIT ACL, it opens up the same window in STORAGE / POOLS / EDIT ACL.
I'm assuming that's normal.
Of course the user and group are the same as previously applied.

Everything seems normal.

Now what I'm trying to do is to set different ACL for subfolders.

My understanding of the documentation is that you should do that in Windows.

I'm using Windows 10 PRO.
I select the subfolder and go into PROPERTIES / SECURITY

If I go into EDIT, I will see 5 items :

• Everyone
• CREATOR OWNER
• CREATOR GROUP
• <group selected in TrueNAS>
• <user selected in TrueNAS>

Firstly, I don't know why there's the CREATOR OWNER and CREATOR GROUP objects, I'm tempted to delete them.

Secondly, if I look at the permissions that are selected, all of them seem empty, everywhere, for each object?

When I start to make changes, it messes everything up.

For example, I want to make it so only a specific user has access to a subfolder.
So I would delete everything and add the user and give it FULL CONTROL.
What happens: nobody has access to the subfolder anymore, including the user that I specifically designated.

TLDR: I want to know how to set ACL for a SMB share, but then be able to set different ACL for specific subfolders.
How do I do that?

 

[G8One2]

I think each user needs its own dataset created under the main SMB share dataset, for it to work that way. Each user dataset can have permissions set per user.

 

[BlazeStar]

I think each user needs its own dataset created under the main SMB share dataset, for it to work that way. Each user dataset can have permissions set per user.

i really hope that’s not true?

if I have 50 users, then I would need 50 datasets.
Plus additional datasets for sharing files.
And as many corresponding shares?