I’m struggling with the setting up the PR4100 properly. The PR4100 disconnect the users a number of times causing us a lot of headaches. I hope someone with good experience in both the Active Directory and MyCloud could advise me the best practice on how to set up a data storage for a small business with 40 staff.
Here are the some of issues I faced:
Setting a new user via the Active Directory in the windows is straightforward. However when I set the home folder for the user linking to the PR4100, it won’t auto create the folder for the user. I have to access to the WD Mycloud dashboard to manually create the folder to each user. Even then, the newly folder created must be set in Public mode. If I set to private, the windows would not able to link it and will direct the user’s new directory to the new folder within the server harddrive. For this reason, it is a must to be set in Public.
Once setting the user to the intended folder in the PR4100 as prescribed in #1, I could not set the user folder to private in any future. If I do that, the user will receive a notice of user authentication failed and requested to enter the user id and password. When entering them, it always denied. When checked the security of the folder, it states that the owner has changed. Even the administrator of the active directory couldn’t access it. Only the admin of the PR4100 could access it via MyCloud.
When AD users’ folders are set to public, creating new users (not part of the AD) via the MyCloud dashboard for the specific sharing such as photo or video, these users are able to view the AD users’ folders and access them via the MyCloud (Since the AD users’ folders were set to Public, the “User Access” cannot be edited as it is grey off due to the public sharing).
Now if I change the AD users’ folders to private and only assign to the correct AD user to use, this private mode could prevent the MyCloud users from viewing the AD users’ folders, however, the problem as mentioned in #2 appeared to the AD users.
My real concern is the security. Setting up “public” for AD users may enable them to access their personal folders and can be controlled by the Administrator of the AD. But the weakness of the "public’ mode would allow the MyCloud users to view them and bypass the security set by the AD Administrator. This is a security issue as data from the AD users are mostly company’s files, which are not intended to leak out.
My question here is, are there ways to block access between the AD users and the MyCloud users without security breach or affecting the AD user authentication?
I hope you could understand my dilemma. I hope someone could advise me how to properly set up folders for the AD users and MyCloud users or anything I need to know