Creating a CIFS Share

This section describes how to share namespaces in CIFS mode so that users can access the namespaces.

Choose Resources > Resources > Share > CIFS Share.
Select the desired account from the Account drop-down list in the upper left corner.
Click Create.
The Create CIFS Share page is displayed on the right.

Set basic CIFS share parameters.

Table 1 describes related parameters.

**Table 1** Basic CIFS share parameters
Parameter	Description
Share Name	Indicates the name of the CIFS share, which is used by users to access shared resources. [Value range] The name must be unique. The name cannot contain characters " / \ [ ] : \| < > + ; , ? * =, and cannot be ipc$, autohome, ~, or print$ reserved by the system. The name contains 1 to 80 characters.
Namespace	Indicates the namespace for which you want to create a CIFS share. NOTE: If the selected namespace is the secondary resource in a remote replication pair, data in the namespace is probably being modified when it is accessed. Before performing this operation, confirm that the application allows possible data inconsistency.
Dtree	Indicates the dtree for which you want to create a CIFS share. If you do not select a dtree, the CIFS share is created for the entire namespace.

Set advanced properties of the CIFS share. Click Advanced.
1. Modify Description of the CIFS share.
  
  The description can be left blank or contain up to 255 characters.
2. Determine whether to add the default ACL. This function creates a default ACL (full control rights to everyone; applied to the current directory, its subdirectories, and files in them) for a shared CIFS root directory if the directory has no ACL. You can change the default ACL in follow-up operations. If you want to retain the UNIX mode bits, disable this function.

Select user or user groups that can access the CIFS share.

In the Permission area, click Add.
The Add User or User Group page is displayed.
Select the type of the users or user groups.
The value can be Everyone, Local Windows authentication user, Local Windows authentication user group, AD domain user, or AD domain user group.
- If you select Local Windows authentication user or Local Windows authentication user group, select the users or user groups to be added from the list.
- If you select AD domain user or AD domain user group, enter the names of the users or user groups in Name.
  - A domain user name is in the format of Domain name\Domain user name and a domain user group name is in the format of Domain name\Domain user group name.
  - 1 to 256 characters are allowed.
  - Multiple names are separated by carriage returns.
  - If you do not have the CIFS share administrator permission, you need to change the permission of the root directory in a namespace or dtree used by a share to 777. Then, you can create files or directories in the root directory in the namespace or dtree. For details about the command for modifying the permission on the root directory, see "Changing the Permission on the Dtree Root Directory" in the OceanStor Pacific Series 8.1.2 Command Reference (for Engineers).

In Permission Level, select the permission granted for the users or user groups.

Table 2 describes the permissions.

**Table 2** CIFS share permissions
Permission	Forbidden	Read-Only	Read/Write	Full Control
Viewing files and subdirectories	X^a	√^b	√	√
Viewing file contents	X	√	√	√
Running executable files	X	√	√	√
Adding files or subdirectories	X	-^c	√	√
Modifying file contents	X	-	√	√
Deleting files and subdirectories	X	-	√	√
Renaming	X	-	√	√
Changing ACL permissions of files or directories	X	-	-	√
a: Users do not have the permission. b: Users have the permission. c: The specified permission is not involved.

Click OK.
The system adds the selected users or user groups to the Permission list.