Server Message Block (SMB) is a network protocol that facilitates network communication between servers and Web interfaces or clients. You can use this protocol to share files. To facilitate network communication, SMB requires both the client and a server.
Cloud Storage Gateway provides SMB services. You can send a request to access a gateway from a Windows client and the gateway will respond to the request.
To use the SMB services, you must configure a shared file directory on the virtual machine that runs Cloud Storage Gateway, create an SMB user, and specify user permissions. You can then log on to the SMB share from a client, for example, a PC, with the user information configured on the virtual machine to perform operations on the share.
Note: You can enable and disable SMB in the gateway console.
1.Log on to the gateway console.
2.Create an SMB share.
On the SMB page, click Create in the upper-right corner, and set the parameters in the dialog box that appears.
If you set the Enable Remote Sync parameter to Yes, set the additional parameters, as shown in the following figure:
To set the Cloud Resource parameter, click Select, and the following dialog box appears:
To set the Cache Disk Path parameter, click Select, and the following dialog box appears:
Active Directory (AD) and Lightweight Directory Access Protocol (LDAP) are standard application protocols used to query and change directory information. Select AD or LDAP and specify the settings.
1.Before you connect the gateway to an AD server, you must specify the DNS settings on the About page.
2.You can connect the gateway to either an AD or LDAP server. You must disconnect the gateway from the current server before you connect it to another server.
3.Currently, you can enable only one of the authentication modes for a file gateway: AD domain user, LDAP user, or local user authentication. After you connect a gateway to or disconnect it from the AD or LDAP server, the user permissions configured in the SMB share will be automatically deleted.
4.Currently, the AD feature supports 64-bit Windows Server 2016 Datacenter and Windows Server 2012 R2 Datacenter.
5.Currently, the LDAP feature supports 64-bit CentOS 7.4 with OpenLDAP 2.4.44.
1.On the About page, click Update DNS to specify IP addresses of AD servers to resolve AD domain names.
2.On the SMB page, click the AD/LDAP tab, and click Join AD. Enter the required information in the following dialog box:
Server IP: the IP address of the AD server.Username and Password: The root username and password.
3.After the configuration is complete, the AD status becomes Connected, as shown in the following figure:
1.On the SMB page, click the AD/LDAP tab, and click Join LDAP. Enter the required information in the following dialog box:
Server IP: The IP address of the LDAP server (directory system agent).
Support TLS: You can set this parameter to Yes or No.Base DN: Specify the base DN, for example,dc=iftdomain,dc=ift.local.
Root DN: Specify the root DN, for example, cn=admin,dc=iftdomain,dc=ift.local.
Password: The password of the root directory.
2.After the configuration is complete, the LDAP status becomes Connected, as shown in the following figure:
An SMB user is required when you mount a file system to a client. This topic describes how to create SMB users.
1.Create an SMB user without joining any domains.
Note: When you create an SMB user, do not name the user with a single letter. The system does not support usernames that contain only one letter.
On the SMB page, click the SMB Users tab. Click Create in the upper-right corner and a dialog box appears, as shown in the following figures:
2.If you have joined an AD domain, you do not have to configure the SMB user. All users in the AD domain are listed on the SMB Users page, as shown in the following figure:
3.If you have joined a LDAP domain, LDAP users with a Samba password configured are listed in the Select drop-down list. Usually, the server automatically synchronizes the Samba password to LDAP. If no password is synchronized by the system, it indicates that the LDAP user does not have a Samba password. To solve this issue, create a Samba user and specify a Samba password for the LDAP password. We recommend that you specify the same password for both Samba and LDAP. The following procedure shows how to create a Samba user for an LDAP user:
On the SMB Users page, click Create in the upper-right corner, and the following dialog box appears:
Click Select and choose the target user in the drop-down list. Specify a password for the user and click OK. A Samba user has been created for the LDAP user.
LDAP users with a Samba password configured are listed in the Select drop-down list.
1.On the SMB page, click the SMB Shares tab, find the target share, and click Delete in the Actions column.
2.In the dialog box that appears, click OK to delete the SMB share.
3.After the SMB share is deleted, the Windows mount point or mapping network drive immediately becomes ineffective.