Toasters, Let me start by stating that I am a UNIX admin and I administer my filers strictly by command line or scripts we've written. Most of our data is shared via NFS with a few CIFS shares setup on only a couple filers. That said, a user want a log of who accesses his share and which files were viewed/changed. Reading the man pages and the admin guide for ONTAP 6.1, it appears that the best/only solution is the cifs.audit.enable option. I have enabled this per the instructions in the System Administrators Guide (http://now.netapp.com/NOW/knowledge/docs/ontap/rel61r1/html/sag/cifs36.htm#1...). According to this document, you can turn auditing on in five simple steps. My problem is with step number 4:

"Activate access auditing for individual files and directories according to your Windows documentation."

Since I'm a UNIX admin, I don't understand the Windows aspect of filer administration. I tried getting our NT admins to take a look at it, but they say they can't set the file and directory auditing on the filer using the User Manager tool (the menu items under the Policies menu are unselectable). I have tried creating a non-root, administrative account using the useradmin console command, but that left them with fewer rights on the filer than as the domain admin.

Any help or pointers would be greatly appreciated. Thanks,

Geoff Hardin geoff.hardin@dalsemi.com This space is for rent in order to increase company revenue.