QNAP Systems, Inc. - Network Attached Storage (NAS)



Why can the admin account still access subfolders within a shared folder using SMB or AFP, even though folder permissions are set to deny admin access?

Applied Models:


After enabling advanced folder permissions at “Control Panel” > “Privilege” > ”Shared Folders” > ”Advanced Permissions” > ”Enable Advanced Folder Permissions”, user access and deny permissions can be set individually for folders and subfolders. However, folders with “admin” > “deny access” permissions can still be accessed by the admin account if they are inside a shared folder, and admin has permission to connect to that shared folder using SMB or AFP.

This happens because when connecting with SMB or AFP, the admin account is only affected by the root level shared folder permissions. When the admin account has read/write permissions for a shared folder, subfolder permissions are ignored.

Release date: 2017-01-20
Was it helpful?
Thank you for your feedback.
Thank you for your feedback. If you have any question, please contact support@qnap.com
60% of people think it helps.