Manualshelf

6.5 HP StoreAll OS User Guide

ManualsBrandsHP ManualsStorageHP X9320 IB 21.6TB Network Storage System
81828384858687888990
Everyone user may have more access rights than necessary. The administrator should set ACLs
on the SMB share to ensure that users have only the appropriate access rights. Alternatively,
permissions can be set more restrictively on the directory exporting the SMB share.
When the cluster and Windows clients are not joined in a domain, local users are not visible
when you attempt to add ACLs on files and folders in an SMB share.
A directory tree on an SMB share cannot be copied if there are more than 50 ACLs on the
share. Also, because of technical constraints in the SMB service, you cannot create subfolders
in a directory on an SMB share having more than 50 ACLs.
When configuring an SMB share, you can specify IP addresses or ranges that should be
allowed or denied access to the share. However, if your network includes packet filters, a
NAT gateway, or routers, this feature cannot be used because the client IP addresses are
modified while in transit.
You can use an SMB share as a DFS target. However, the SMB share does not support DFS
load balancing or DFS replication.
With the release of version 6.2, SMB shares support Large MTU, which provides a 1 MB
buffer for reads and writes. On the client, you must enable Large MTU in the registry to enable
support for Large MTU on the SMB server.
Once a share description has been created for an SMB share, you cannot modify the
description to be “null” nor can you delete the description using the StoreAll OS software.
If there is a space in an Active Directory user name and that user is accessing HP-SMB shares,
HP-SMB replaces the space with ^ (this is the default HP-SMB space replacement character).
The ^ character is a valid Windows name character, but it can be misinterpreted by HP-SMB
as a space character. To avoid the possibility of HP-SMB misinterpreting a space in the user
name, you can configure a different replacement character. To do so, you must modify
“SpaceReplacement”, which is located in HKEY_THIS_MACHINE\Services\lsass\parameters.
Be aware that the character you select may be an invalid name character in Windows, which
are: " / \ [ ] : ; | = , + * ? < >
Selecting an invalid name character is acceptable if the character does not have an alternate
use in the HP-SMB configuration. For example, you could select “+” if it is not assigned as the
domain separator character and username mapping is not enabled. Always take care when
selecting any of these characters because these characters may result in alternate interpretations
in command line environments.
SMB shares support alternate data streams. SMB clients with files containing the Alternate
Data Streams type '$DATA' can be written to SMB shares. The files are stored on the StoreAll
file system in a special format and should only be handled by SMB clients.
IMPORTANT: Keep in mind the following:
If files are handled over a different protocol or directly on the StoreAll server via
PowerShell, the alternate data streams could be lost.
If you rename the master file table while archiving and auto commit is enabled, the
alternative data streams associated with the Master File Table are missing after the rename.
HP-SMB supports the following subset of Windows LSASS Local Authentication Provider
Privileges:
SE_BACKUP_PRIVILEGE
SE_CHANGE_NOTIFY_PRIVILEGE (Bypass traverse checking)
SE_MACHINE_ACCOUNT_PRIVILEGE
SE_MACHINE_VOLUME_PRIVILEGE
88 Using SMB