SMB Shares acting off

[Keaters44]

I have an employee who for some reason could get into an HR folder via smb share when he did not have owner, group or user access to the share. I checked his computer to see if he has inherited shares on and did not. It seems he only had access for 30 minutes and then he no longer had access. I have checked my Truesnas scale setup on version TrueNAS-SCALE-22.12.2 and everything is setup right. I did check to make sure that no one else with access to the smb shares was not signed in and that is not the case. Any help on direction on where to look would be great. The user is on a Windows system.

Thanks!

 

[anodos]

I have an employee who for some reason could get into an HR folder via smb share when he did not have owner, group or user access to the share. I checked his computer to see if he has inherited shares on and did not. It seems he only had access for 30 minutes and then he no longer had access. I have checked my Truesnas scale setup on version TrueNAS-SCALE-22.12.2 and everything is setup right. I did check to make sure that no one else with access to the smb shares was not signed in and that is not the case. Any help on direction on where to look would be great. The user is on a Windows system.

Thanks!

What is output of `testparm -s`?

 

[Keaters44]

Global parameters
[global]
bind interfaces only = Yes
disable spoolss = Yes
dns proxy = No
guest account = Scott
load printers = No
logging = file
max log size = 5120
netbios aliases = DMG File Server
netbios name = TRUENAS
passdb backend = tdbsam:/var/run/samba-cache/passdb.tdb
printcap name = /dev/null
registry shares = Yes
restrict anonymous = 2
server multi channel support = No
server string = TrueNAS Server
winbind request timeout = 2
idmap config * : range = 90000001 - 100000000
fruit:nfs_aces = false
fruit:zero_file_id = false
rpc_server:mdssvc = disabled
rpc_daemon:mdssd = disabled
idmap config * : backend = tdb
create mask = 0775
directory mask = 0775


[IT Projects]
ea support = No
path = /mnt/FIles/IT Projects
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[Misc]
ea support = No
path = /mnt/FIles/Misc
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[Client Uploads]
ea support = No
path = /mnt/FIles/Client Uploads
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[Landscapes]
ea support = No
path = /mnt/FIles/Landscapes
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[Deposits]
ea support = No
path = /mnt/FIles/Deposits
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE

---

ea support = No
path = /mnt/FIles/HR
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[Active Projects Fast]
ea support = No
path = /mnt/FIles/Active Projects Fast
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[Intern]
ea support = No
path = /mnt/FIles/Intern
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[Backups]
ea support = No
path = /mnt/FIles/Backups
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[Archived Files]
ea support = No
path = /mnt/ArchivedFiles
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[Accounting]
ea support = No
path = /mnt/FIles/Accounting
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[Lauren Brady's Folder]
ea support = No
path = /mnt/FIles/Lauren Bradys Folder
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[Projects]
ea support = No
path = /mnt/FIles/Projects
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[I-140 Folder]
ea support = No
path = /mnt/FIles/I-140 Folder
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[Archived Projects]
ea support = No
path = /mnt/Archived Projects/Archived Projects
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[Shawn's Desktop]
ea support = No
path = /mnt/FIles/Shawns Desktop
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[Time Machine Backups]
ea support = No
path = /mnt/FIles/TimeMachineBackups
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid = cf892a0d-bd23-4175-a455-de6718c2e4cc
fruit:time machine max size = 0
fruit:time machine = True
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = NO_PRESET


[Administration]
ea support = No
path = /mnt/FIles/Administration
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[DMG]
ea support = No
path = /mnt/FIles/DMG
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[Project Estimates]
ea support = No
path = /mnt/FIles/Project Estimates
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[Kay's Folder]
ea support = No
path = /mnt/FIles/Kays Folder
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE


[3D Animations]
ea support = No
path = /mnt/FIles/3D Animations
posix locking = No
read only = No
smbd max xattr size = 2097152
vfs objects = fruit streams_xattr shadow_copy_zfs ixnas zfs_core io_uring
tn:vuid =
fruit:time machine max size = 0
fruit:time machine = False
fruit:resource = stream
fruit:metadata = stream
nfs4:chown = True
tn:home = False
tn:path_suffix =
tn:purpose = DEFAULT_SHARE

 

[anodos]

Can you PM me a debug? Assuming that filesystem ACL is set correctly and user is authenticated as correct user, then this should not be possible.