access zone based SMB privilege's

Question

Is there a way that I can make a role that can manage SMB on only one access zone. We have an Isilon cluster with 5 different access zones. I have created a role under access zone 'X' to manage SMB shares (read/write) but the 'Protocols' button will be disabled. When add SMB read privilege under system the protocols button is enabled and users in that role can view SMB for all access zone yet they cannot manage SMB under access zone 'X'. privilege's for the role in access zone 'X' Platform API - read SMB - read/write privilege's for a role under System Console - read Platform API - read SMB - read

DELL-Sam L · Answer

Hello alanazi, Here is a link to a kb that maybe of assistance. https://dell.to/3nO89dx

Peter Sero · Answer

The read-only access in the System zone masks the read/write privilege in the actual "X" zone.

I wouldn't recommend assigning users multiple roles in overlapping zones.

Can the user access SMB configs via CLI (when also granted ssh login)?

hth

-- Peter

Isilon

Was this post helpful?