AD connector on Linkstation Pro Duo not keeping domain users/groups properly

[gfmeyers]

   

Running a brand new Linkstation Pro Duo - firmware v. 3.0.8

When I connect it to Active Directory, it appears to connect correctly.  All users and groups appear correctly as options in Shared Folder Access settings. 

However, if I move a user or a group up, it doesn't seem to retain the settings correctly (it retains something, but not something meaningful).

Permissions go from:     (note that "BOB" is the domain name here and "smith" is the user name)

   BOB+smith(DOMAIN)   <-- this is the user permission
   BOB+users(DOMAIN)   <-- this is the group permission
 
Hit apply and then go browse them and they appear as:

   smith(DOMAIN)(DOMAIN)
   BOB(DOMAIN)

After that, when I try to map the share via a command line, I get:

   net use h: \\files\smith

 

   The password is invalid for \\files\smith
   Enter the user name for 'files':

Now if I enter simth@bob.local and the associated password, I get:

   System error 5 has occurred.
   Access is denied.

Any assistance would be appreciated!

Thanks in advance!

 

--g--

[Colin137]

I recommend updating to firmware version 3.09, then reset it to defaults from Maintenance->Initialization, Restore. Could you detail how you have the access restrictions set up?

[gfmeyers]

   

Well, it seems to be partially fixed.  I did as you suggested and updated to 3.09 and restored to defaults.  After configuring/adding it to the domain, I still get the same visual results, but I'm no longer being prompted for passwords. 

 

This gets me going, but might be a problem down the road.

 

Is anyone else seeing this?

 

Also, noteworthy, when I go to give it the name of the Active Directory controller, it won't let me use the FQDN - I get an invalid character error.  I got this on both 3.08 and 3.09.  

 

So I have to enter "SERVER" instead of "SERVER.bob.local".

 

Apparently you aren't allowed to use periods in an FQDN?  :smileywink:

 

Thanks!

 

--g--

[Colin137]

The "Active Directory Domain Controller Name" field is just asking for the Computer Name of the domain controller, not the fully qualified domain name.