Simple password for shared folder?

    • New

    Hello everyone. :)


    I have built an experimental OMV6 NAS using the excellent video from Explaining Computers HERE.


    However, in the video, to keep things simple, Chris sets up OMV to be completely open to anyone to find and use, and I would like just simple password protection for anyone who tries to access the shared folder(s).


    Can someone point me in the right direction as to where I find out how to do that please?


    I don't REALLY want users per-se', I just want password protection on the globally shared folder(s), but if I can do it by creating a user, that's OK - I just need to know how to do it.

    I am coming from a Windoze background, so please - be gentle with any Linux command-line scripts, as I am still learning the terminal and how to do things in there. :P


    My other NAS boxes use Puppy Linux, and in the setup of that, you can configure an SMB password for root, cos Puppy is always root and does not really have users either.

    Once you do that, any machine that has NOT connected to the shares before, is prompted for a password to connect, and if the password is wrong, the NAS rejects the connection as you would expect - I want to pretty-much duplicate that behaviour on OMV6.


    I don't really like any NAS, that is totally open to whoever can find it on the network, although, I totally understand why Chris did his video like that - it was the KISS approach.

    Simple password authentication will thwart all of the nosey people just browsing around on the LAN to see what they can find, if you see what I mean.


    Thanks for any help.

    • New

    Grogster Don't feel overwhelmed -- if you're just now expanding your horizons beyond Windoze and looking for KISS introduction to the open-source world: OMV is a great place to start! (I'm not a beneficiary in any way of the OMV project; I'm just a personal tech enthusiast that enjoys quality products where I find them i.e. OMV).


    I believe everything you wish to accomplish is comfortably provided within the web interface; I don't expect you'll run into any common tasks that will force you back to a command-line once it's up-and-running.


    The "KISS" rule for user/permisisons management for all IT systems (Windoze, Linux, email, network services, etc.) is always:

    1) Groups first

    2) Users second; assigned to appropriate groups

    3) Assign roles third; by groups when possible (unless unnecessary)


    There's nothing wrong with only setting up one user if it's a home network and you're the only user... just skip step 1! To crate a personal user in the web portal just click 'Users' => 'Users' and the "plus" symbol and complete the form. Always remember to click the check mark in the yellow banner with OMV! (New settings entered in the web portal aren't always applied to the system until you do.)


    Next go to 'Services' => 'SMB/CIFS' => 'Shares'; this is where you configure service-level options for the network file share service (these settings are only necessary for existing shares if you don't specify these options when creating new shares.) Set "Public" to 'No' -- this is the big divergence from Chris' video for shares to be Guest acessible. Also "Browsable" to 'Yes" only for the folders you want to be listed when navigating to the NAS' address in your file browser... Folders that are not "Browsable" can still be accessed by their full file path but will not be displayed in your file browser.


    Lastly go back to 'Storage' => 'Shared Folders' [no doubt where you started haha] -- here, you can click one share at a time, and click the icon above that looks like a folder with a key on it labeled "Permissions". Here you can set "Read/Write", "Read-Only", and "No Access" as appropriate for groups [or users; more likely in your case] to restrict access to each respective share on your NAS.


    Et voila: hopefully that will accomplish the necessary user-based security you're seeking for your NAS! Again don't forget to always click the check mark in the yellow banner when it appears following each configuration change 😜

    • New

    Hello. :)


    Thank you very much for that reply - it was easy to follow, and I have now created a user for me(Grogster), and I also created a new shared folder for the purposes of testing - PPF(Password Protected Folder).


    That went very painlessly.


    However, in Windoze Ten, under Network, I CAN SEE THE NEW FOLDER, and can access it fine WITHOUT Windoze prompting me for any password, so.......I must still be doing something wrong. ;(


    I was expecting Windoze Ten to ask me for the username and password for the user I created at that point.


    I would LOVE to insert some screenshots, but I can't understand the image insert window.

    What is "Source"? - pasting the link in there is rejected, pasting a text description in there is rejected.


    LINKS INSTEAD:


    Photo One...


    Photo Two...

    • New

    Hold the phone.....now Windoze is asking me for the username and password.

    Perhaps Windoze just takes a little time to.....well......do ANYTHING.


    When I enter in Grogster/PW, Windoze now connects fine. :thumbup:

    • New

    Glad to hear it's finally working as intended! There are a few things that may seem different, or seem like perhaps security isn't working as desired:

    - If your Windoze username + password matches a user on the NAS it could pass the credentials check without prompting you (depending on Samba settings, which is the name of the service that provides the SMB/CIFS protocols)

    - Once authenticated (either by username + password or Win credentials) your network session to the protected share will remain active until your next reboot


    Other than that it's great to hear that it's working well now!

    • New

    Interestingly, when I look in W10 credential manager, there is NO entry for the OMV I.P. address, but there IS entries for the Puppy Linux NAS boxes. I'm gonna put that down to Windoze being Windoze - yet again.


    I have one W10 machine(this one), but all my other machines are Linux-based, including Puppy and Mint.

    I've even been putting people onto Mint, when their Windoze install dies in a big way, as Mint is getting really, really good now as an alternative for Windoze users to migrate to.


    OMV boots up faster then even the Puppy Linux boxes do, so I am TOYING with the idea, of moving all my stuff off of the Puppy Linux NAS boxes, into OMV based boxes. I have a few questions about that concept, but I will start another thread for that if I decide to do it.


    Thank you very much for your help. :love:

  • Grogster

    Added the Label resolved

Participate now!

Don’t have an account yet? Register yourself now and be a part of our community!

Register Yourself Login