Unsolved
2 Posts
0
159
ACL - Checking for exact permission when using SMB protocol
Dear fellows,
I have created a directory and a share named "phuctm" with the path: "/ifs/az1/phuctm". "phuctm" is a user from AD and only one is permited for this folder, the other ones is denied.
I have used command to check permission for "phuonght" like this: isi auth access "demo.local\phuonght" /ifs/az1/phuctm with File permission: No permission were found for this user and this file and I belive that this user wasn't able to access this. But this one is still have access to this folder.
Pls let me know why and how to do find out the permission for "phuonght" user exactly. Additionally, i want to autdit or check whether this user is actually able to have access this folder of "phuctm"
Phil2018
12 Posts
0
May 22nd, 2023 06:00
Hi,
what does the output of 'ls -le /ifs/az1/phuctm' look like?
phucsminh
2 Posts
0
May 22nd, 2023 20:00
I found out an issues. Because there is existing share in the root directory /ifs with full-control permission, so it is applied for all of data structure.
I am quite confused because of diferrence between share permission and NTFS permission. As far as know when both is applying for all of data, so it is applied most restrictively. In this case, I set the NTFS permission in order to deny the user phuonght applied in the directory of phuctm