FRG: Accounts

Descriptions of each field in the Accounts section of the TrueNAS web interface.

  3 minute read

Groups: Add

Group Configuration

GIDThe Group ID (GID) is a unique number used to identify a Unix group. Enter a number above 1000 for a group with user accounts. Groups used by a service must have an ID that matches the default port number used by the service.
NameGroup name cannot begin with a hyphen (-) or contain a space, tab, or these characters: , : + & # % ^ ( ) ! @ ~ * ? < > =. $ can only be used as the last character of the username.
Permit SudoAllow group members to use sudo. Group members are prompted for their password when using sudo.
Samba AuthenticationSet to allow group to be used for Samba permissions and authentication.
Allow Duplicate GIDsNot recommended. Allow more than one group to have the same group ID.

Users: Add

Identification

Full NameSpaces are allowed.
UsernameUsernames can be up to 16 characters long. When using NIS or other legacy software with limited username lengths, keep usernames to eight characters or less for compatibility. Usernames cannot begin with a hyphen (-) or contain a space, tab, or these characters: , : + & # % ^ ( ) ! @ ~ * ? < > =. $ can only be used as the last character of the username.
EmailEnter the email address of the new user.
PasswordRequired unless Enable password login is No. Passwords cannot contain a ?.

User ID and Groups

User IDUser accounts have an ID greater than 1000 and system accounts have an ID equal to the default port number used by the service.
New Primary GroupSet to create a new primary group with the same name as the user. Unset to select an existing group for the user.
Primary GroupNew users are not given su permissions if wheel is their primary group.
Auxiliary GroupAdd this user to additional groups.

Directories and Permissions

Home DirectoryChoose a path to the user’s home directory. If the directory exists and matches the username, it is set as the user’s home directory. When the path does not end with a subdirectory matching the username, a new subdirectory is created. The full path to the user’s home directory is shown here when editing a user.
Home Directory PermissionsSets default Unix permissions of the user home directory. This is read-only for built-in users.

Authentication

SSH Public KeyEnter or paste the public SSH key of the user for any key-based authentication. Do not paste the private key.
Disable PasswordYes: Disables the Password fields and removes the password from the account. The account cannot use password-based logins for services. For example, disabling the password prevents using account credentials to log in to an SMB share or open an SSH session on the system. The Lock User and Permit Sudo options are also removed. No: Requires adding a Password to the account. The account can use the saved Password to authenticate with password-based services.
ShellSelect the shell to use for local and SSH logins.
Lock UserPrevent the user from logging in or using password-based services until this option is unset. Locking an account is only possible when Disable Password is No and a Password has been created for the account.
Permit SudoAllow group members to use sudo. Group members are prompted for their password when using sudo.
Microsoft AccountSet to allow additional username authentication methods when the user is connecting from a Windows 8 or newer operating system.
Samba AuthenticationSet to allow user to authenticate to Samba shares.