Ways to force permissions to be modified in NetApp CIFS folders

Recently a customer encountered a problem, in NetApp CIFS has a folder only one user has permission to access, other users, including administrators have no access, now when the user left, the account has been deleted in the ad, at this time the administrator needs to modify the permissions of this folder, how to do.

Here NetApp Official provides a tool called Secedit, use this tool and then with the command line can be forced to modify the permissions of the specified folder, the method is as follows:

1. SSH to the command line interface of the NetApp controller and enter the command:

Fsecurity Show/vol/volname

This will return something similar to the following:

Netapp-1> fsecurity Show/vol/test

[/vol/test-directory (Inum 64)]

Security Style:ntfs

Effective Style:ntfs

DOS attributes:0x0030 (---AD---)

Unix Security:

uid:0 (Root)

gid:0

mode:0777 (RWXRWXRWX)

NTFS Security Descriptor:

Owner:builtin\administrators

Group:builtin\administrators

Dacl:

ALLOW-DEMO\NASUSER1-0X001F01FF (full Control)-oi| Ci

2. Open the Secedit tool

3. Click Add to enter the path to the folder where you want to modify permissions in the popup screen.

650) this.width=650; "src=" Https://s5.51cto.com/wyfs02/M01/97/13/wKiom1ko3PmwKU19AACa5S7Gbgc713.png "title=" Image001.png "alt=" Wkiom1ko3pmwku19aaca5s7gbgc713.png "/>

4. Click OK, then add the user/group you want, and the permissions

650) this.width=650; "src=" Https://s2.51cto.com/wyfs02/M00/97/14/wKioL1ko3Qrxj6qsAAFNZMvlMAU951.png "title=" Image002.png "alt=" Wkiol1ko3qrxj6qsaafnzmvlmau951.png "/>

5. Click OK to confirm the line

6. Go back to the main interface and click ' Save Unicode ', then create a untitled file in the directory where the tool is located, rename the file to security.conf, and put the file in the \ \ Name \etc$ directory, if the file is already renamed, such as security_test.conf.

7. Enter the following command at the command line, where the-C is checked and not formally executed:

Netapp-1> fsecurity apply/etc/security_test.conf-c

Definition validated successfully.

8. Then remove-C, formally execute the command run:

Netapp-1> fsecurity apply/etc/security_test.conf

Added Security Job 1015.

9. Then run the initial command to view the permissions:

Netapp-1> fsecurity Show/vol/test

[/vol/test-directory (Inum 64)]

Security Style:ntfs

Effective Style:ntfs

DOS attributes:0x0030 (---AD---)

Unix Security:

uid:0 (Root)

gid:0

mode:0777 (RWXRWXRWX)

NTFS Security Descriptor:

Owner:builtin\administrators

Group:builtin\administrators

Dacl:

ALLOW-EVERYONE-0X001F01FF (full Control)

allow-everyone-0x10000000-oi| ci| Io

And then you can see that the permissions have been changed to everyone in Windows.

This article is from the "Chuan Liu Information" blog, please be sure to keep this source http://tech4fei.blog.51cto.com/12552348/1930078

Ways to force permissions to be modified in NetApp CIFS folders