[Know the N8000]How to understand the basic concept of the CIFS?

AD is a core component of the Windows 2000. AD is a directory service set used to improve the Windows management, security, and interactivity. The AD provides space for storing entity information on the network, implementing unified management and scheduling of resources distributed on the LAN.

A domain is a collection of security principals on Windows NT or Windows 2000. An AD domain is comprised of one or multiple domains. On a standalone workstation, the computer itself is a domain. A domain may cover different physical locations. Each domain has its own security policy and security relationship with other domains.

Storing host domain names and IP addresses on the network, the DNS server converts domain names to corresponding IP addresses.

The NTP server synchronizes the time on all the devices on the network.

A share mode supported by the clustered NAS storage system. In CIFS Normal share mode, the shared file system appears as a directory, and the share name is used as the directory name. All the users can access the shared directory.

A share mode supported by the clustered NAS storage system. In the CIFS Homedir share mode, the file system is shared to a specific user as an exclusive directory. The user can only access the exclusive directory named after its user name.

An authentication mode supported by the clustered NAS storage system. No other server is required for authentication because the clustered NAS storage system stores all the user names and passwords.

An authentication mode supported by the clustered NAS storage system. The AD domain controller is responsible for user authentication. All the clients in the AD domain are allowed to access the shared space when the clustered NAS storage system is added to the AD domain.

In a non-domain environment, the administrator can implement local group permission management to control access to the CIFS Normal share.

For the CIFS Normal share, the clustered NAS storage system implements access permission control by creating local groups, configuring different permissions for local groups, and adding local users to local groups. The access permission can be rw, ro, or deny.

The local group management is applicable to a non-domain environment where the permission assignment is regular.

In an AD domain, the administrator can implement file permission management to control access to shared directories.

Permissions for files can be Full Control, Modify, Read & Execute, List Folder Contents, Read, Write, or Special Permissions. For details about permissions, see To set, view, change, or remove permissions on files and folders in Windows Online Help.

The file permission management is applicable to scenarios where the permission assignment is flexible.

Created by the system administrator on the ISM or the CLI. Local users can access the CIFS Normal share and CIFS Homedir share.

The local user or domain user who has accessed the homedir shared space.

Created by the AD domain administrator on the AD domain controller. Domain users can access the CIFS Normal share and CIFS Homedir share.

Group of local users managed in a specific way.

Shared space that is available for a user or group.

If a hard quota is exceeded, the system immediately prohibits write operations and users can only read data.

The system prohibits write operations seven days after the soft quota is exceeded. The soft quota must be smaller than the hard quota.