Dell PowerVault DX6112 Dell DR Series System Administrator's Guide - Page 20

CIFS, CIFS ACL Support, Access Control List Support in Containers

Get Dell PowerVault DX6112 PDF manuals and user guides View all Dell PowerVault DX6112 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 20 highlights

system (or portion) that is mounted can be accessed using the privileges assigned to each file. The NFS protocol supports Unix, Macintosh, OpenVMS, and the Microsoft Windows operating systems. CIFS The Common Internet File System (CIFS) remote file access protocol is one supported by the DR Series system, and is also known as a Server Message Block (SMB). SMB occurs more commonly than the Network File System (NFS) protocol on systems that run the Microsoft Windows operating system. CIFS allows programs to request files or services on remote computers. CIFS also uses the client-server programming model, whereby the client requests access to a file or passes a message to a program running on the server. Servers review all requested actions and return a response. CIFS is a public (or open) variation of the SMB that was originally developed and used by Microsoft. NOTE: The DR Series system does not currently support the Server Message Block (SMB), version 2.0. NOTE: For details on CIFS feature restrictions, see the Dell DR Series System Interoperability Guide, at support.dell.com/manuals. CIFS ACL Support Starting with the DR4000 system Release 1.1, the DR Series system software supports the use of access control lists (ACLs) for CIFS and share-level permissions. By definition, an ACL is simply a list of permissions that can be associated with any network resource. Each ACL can contain access control entries (ACEs) that define or describe the permissions for an individual user or a group of users. An ACL can consist of zero (meaning that all users have access) or a number of ACEs that define specific permissions on a per-user or per-group basis. NOTE: If an ACE list is empty (meaning that it contains zero entries), this means that all access requests will be granted. An ACL describes the entities that are allowed to access a specific resource. ACLs are a built-in access control mechanism in the Windows operating systems. The ACL support in the DR Series system is differentiated by how it affects the following two container types: • New containers • Existing containers NOTE: The DR Series system supports setting up share-level permissions for a CIFS share using a Microsoft Windows administrative tool. Share-level permissions let you control access to shares. For more information, see Configuring Share-Level Security. NOTE: Any user that is part of BUILTIN\Administrators can edit ACLs on CIFS shares. The local DR Series system administrator is included in the BUILTIN\Administrators group. To add additional domain groups to the BUILTIN \Administrators group, you can use the Computer Manager tool on a Windows client to connect to the DR Series system as Domain administrator and add any groups you want. This capability allows users other than the Domain administrator to modify an ACL as needed. Access Control List Support in Containers All containers created with the 1.1 release and later versions of the DR4000 system software (or pre-1.1 version system software that was upgraded to 1.1 or later), applies a default Access Control List (ACL) at the root of the container. This 20

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
system (or portion) that is mounted can be accessed using the privileges assigned to each file. The NFS protocol
supports Unix, Macintosh, OpenVMS, and the Microsoft Windows operating systems.
CIFS
The Common Internet File System (CIFS) remote file access protocol is one supported by the DR Series system, and is
also known as a Server Message Block (SMB). SMB occurs more commonly than the Network File System (NFS)
protocol on systems that run the Microsoft Windows operating system. CIFS allows programs to request files or services
on remote computers.
CIFS also uses the client-server programming model, whereby the client requests access to a file or passes a message
to a program running on the server. Servers review all requested actions and return a response. CIFS is a public (or
open) variation of the SMB that was originally developed and used by Microsoft.
NOTE:
The DR Series system does not currently support the Server Message Block (SMB), version 2.0.
NOTE:
For details on CIFS feature restrictions, see the
Dell DR Series System Interoperability Guide
, at
support.dell.com/manuals
.
CIFS ACL Support
Starting with the DR4000 system Release 1.1, the DR Series system software supports the use of access control lists
(ACLs) for CIFS and share-level permissions. By definition, an ACL is simply a list of permissions that can be associated
with any network resource.
Each ACL can contain access control entries (ACEs) that define or describe the permissions for an individual user or a
group of users. An ACL can consist of zero (meaning that all users have access) or a number of ACEs that define specific
permissions on a per-user or per-group basis.
NOTE:
If an ACE list is empty (meaning that it contains zero entries), this means that all access requests will be
granted.
An ACL describes the entities that are allowed to access a specific resource. ACLs are a built-in access control
mechanism in the Windows operating systems. The ACL support in the DR Series system is differentiated by how it
affects the following two container types:
New containers
Existing containers
NOTE:
The DR Series system supports setting up share-level permissions for a CIFS share using a Microsoft
Windows administrative tool. Share-level permissions let you control access to shares. For more information, see
Configuring Share-Level Security
.
NOTE:
Any user that is part of BUILTIN\Administrators can edit ACLs on CIFS shares. The local DR Series system
administrator is included in the BUILTIN\Administrators group. To add additional domain groups to the BUILTIN
\Administrators group, you can use the Computer Manager tool on a Windows client to connect to the DR Series
system as Domain administrator and add any groups you want. This capability allows users other than the Domain
administrator to modify an ACL as needed.
Access Control List Support in Containers
All containers created with the 1.1 release and later versions of the DR4000 system software (or pre–1.1 version system
software that was upgraded to 1.1 or later), applies a default Access Control List (ACL) at the root of the container. This
20