We are facing an issue where users are unable to access SMB shares from Windows systems. The error shown is “Windows cannot access \IP\share – permission denied”.
Environment:
-
TrueNAS SCALE (Community Edition)
-
SMB shares configured on datasets under MainPool
-
Multiple datasets (e.g., MSPOWER, MD, Accounts, etc.)
Issue:
-
While applying ACL permissions (NFSv4), we receive errors like:
“[EPERM] Filesystem permissions on path /mnt/MainPool prevent access for group ‘root’ or user ‘Admin’” -
It indicates missing execute (traverse) permission on /mnt/MainPool
-
Unable to modify permissions on MainPool (root dataset restriction)
-
chmod is also not permitted
What we tried:
-
Set ACL using presets (NFS4_OPEN)
-
Enabled recursive and child dataset options
-
Restarted SMB service
-
Cleared Windows credentials
Current blocker:
-
Cannot propagate ACL due to parent dataset restriction
-
Users unable to access shares across systems
Request:
-
What is the recommended approach to handle SMB ACL when root dataset restricts traversal?
-
Should we restructure datasets (create a new parent dataset for SMB)?
-
Best practice to avoid EPERM in this scenario?
Any guidance would be very helpful.
Thanks in advance.