File Sharing an Encrypted Dataset
Posted: Sun Nov 14, 2021 6:58 pm
I've created a couple of encrypted datasets on a zpool. They mount just fine, except I can't properly share them via SMB file sharing. The main unencyrpted zpool shares just great. Users can connect, browse, write, delete, etc… but the encrypted datasets do not function correctly.
I add the mounted encrypted datasets in "Shared Folders" under "Sharing." I then add the appropriate Users and grant them "Read & Write" access. They can connect to the encrypted datasets/shares over the network by entering their credentials. But when they try and write files, the users are greeted with a circle/slash, indicating they don't have proper permissions. They are able to copy files off the shared encrypted dataset.
Strangely, even local copies to these encrypted datasets require the admin to enter their password. Local copies to the main pool require no password. Said encrypted datasets were created via:
Both server and clients are 10.14.6 and the server is running ZFS 2.1.0. Previously, I was using High Sierra with 1.9.3 (I think), with Mojave clients, and sharing of encrypted datasets worked without issue. Anyone have an idea what I'm doing wrong?
I add the mounted encrypted datasets in "Shared Folders" under "Sharing." I then add the appropriate Users and grant them "Read & Write" access. They can connect to the encrypted datasets/shares over the network by entering their credentials. But when they try and write files, the users are greeted with a circle/slash, indicating they don't have proper permissions. They are able to copy files off the shared encrypted dataset.
Strangely, even local copies to these encrypted datasets require the admin to enter their password. Local copies to the main pool require no password. Said encrypted datasets were created via:
- Code: Select all
# zfs create -o encryption=on -o keylocation=prompt -o keyformat=passphrase [dataset]
Both server and clients are 10.14.6 and the server is running ZFS 2.1.0. Previously, I was using High Sierra with 1.9.3 (I think), with Mojave clients, and sharing of encrypted datasets worked without issue. Anyone have an idea what I'm doing wrong?