CIFS deny read/write for all except domain users
I have a Nexenta running which is AD joined. I have been trying to deny all access to everyone except the domain users and admins, so far I haven't succeeded.
I followed this guide http://solori.wordpress.com/2010/06/15/nexentastor-cifs-shares-with-active-directory-authentication/ and http://www.nexenta.com/corp/nexentastor-faq-table/116?task=view and several other posts on this forum.
The plan is to use the share in a Windows environment. When computers who are not in the domain go to \mynexentaserver\myshare they should see permission denied. When a domainjoined user maps the share in windows, they should be given full access. It can't be that hard, but it's giving me a real headache.
Can anyone give some tips?
Thanks in advance.
When you right click on the share from a windows machine on the domain what does the ACL look like? Do you see "everyone" in there?
http://www.nexenta.com/corp/static/docs-stable/NexentaStor-WindowsAD-Integration.pdf Do you read it? (from page 17)