Looks like you are talking about two different ways to grant CIFS access - Share Permission (only affects the share) and NTFS Security (affects filesystem) . - When you say "defined permissions on cifs shares" - you are setting the *share* permission which is different from the underlying NTFS security permissions that you see via the security tab in Windows explorer. You can set share permissions via ONTAP (CLI/filerview/system mgr etc) but as far as I know you can't set NTFS permissions that way, only via a Windows interface.
One way to see both permissions would be via Windows MMC (Computer->Manage->Connect to filer->Shared Folders->Properties. That will should bring up both Share Permissions and Security tabs
Hope this helps
-g
On Thu, Feb 3, 2011 at 8:06 AM, Chaim Rieger lists@up-south.com wrote:
(last question for a while)
in one of my cifs shares (and this applies to all of them) i have defined permissions as (example)
domain/group1 Full Access
domain/group2 Read Only
however when i look at the security tab in windows explorer, it does not reflect as such.
security style is the same across all the shares, (ntfs) and when i test the security by having various users access them they get access or denied based on what cifs shares state, not what is shown in explorer.
i would like to have the explorer tab match, how can i accomplish this ?