Access denied in applying SACLs using the Windows Security tab
Applies to
- ONTAP 9
- CIFS Auditing
Issue
- The following error is seen on the Windows client when adding entries to NTFS SACLs using the Windows Security tab.
An error occurred while applying security information to :Z:\\xxxx\share\xx\a.7z. Failed to enumerate objects in the container. Access is denied.
- Security trace shows access denied on the file
svm1 1 Security Style: NTFS and Access is denied as theNT ACL volume is readonly or directory is a snapshot while setting attributes.Protocol: cifsVolume: -Share: dataPath: /share/xxx/a.7zWin-User: SVM1\ntapUNIX-User: rootSession-ID: 609111849603191330- File directory effective permission shows the user has enough permission on the file
::> vserver security file-directory show-effective-permissions -vserver svm1 -win-user-name SVM1\ntap -path /data/share/xxx/a.7zVserver: svm1Windows User Name: SVM1\ntapUnix User Name: rootFile Path: /data/share/xxx/a.7zCIFS Share Path: -Effective Permissions:Effective File or Directory Permission: 0x11f01ffReadWriteAppendRead EAWrite EAExecuteDelete ChildRead AttributesWrite AttributesDeleteRead ControlWrite DACWrite OwnerSynchronizeSystem Security