Hide SMB Share

Hello everybody

A customer, for whom I have set up a TrueNAS Scale installation (still in testing mode, updated yesterday to the current release) very urgently wants to hide certain directories from ordinary users. I would have given up long ago on the issue and decided that the users not being able to access the directory would be enough. I have found repeatedly two keywords “Enable Access Based Share Enumeration” and “Enable Access Based Enumeration” but I can’t find where to set these option. Also, I am unsure of the steps after enabling them. Is it enough just to give RW-Permissions to the Group to whom the folder belongs or are there additional steps I need to follow?

Yours sincerely
Stefan

Hi,

Is it the share itself you’re trying to hide or directories within the share that users have no permissions to access?

Hi
The customer wants the share itself hidden. I do not plan on creating any shares below the main share and plan on regulating access via file permissions.

Yours
Stefan

Ok sure. Some people have different levels of permissions within a given share hence why I was asking.

I’ve heard a few people now with this issue and I presume it’s related to the latest version?

No, the problem already existed before the latest update. Is there any way I can find out the installation date of TrueNAS? Any logs which are created on first install and which would show which version I installed?

The version should be displayed on the dashboard.

You will also most likely have boot environments created for initial install and all updates after that.

Shares → Windows (SMB) Shares → Edit / Pencil Icon → Advanced Options → Tick “Access Based Share Enumeration”
If you have the purpose set to “Default share parameters” this will be greyed out, you can set the purpose to “No presets” to allow editing these.

If you’re also looking to hide the directories, see By default make files and folders you have no rights to see hidden over SMB / Difference in SMB Share Behaviour Between CORE and SCALE - #28 by Johnny_Fartpants

System → Boot
The boot environments should have a “Date Created” column

Define hidden

Just hidden from casual browsing? If it’s only windows clients adding a $ to the end hides it from view