In trying to build a script to capture CIFS permissions, I am getting the following error:
Get-NaCifsShareAcl : Unable to find API : cifs-share-acl-list-iter-start for vfiler VFILER_NAME
Is it possible to pull the ACL list for a share from a vfiler? This works from the physical frame without issue and I can enumerate the shares themselves without issue, it is just the ACL that is not working.
I have attached a copy of the script, which is just a start, no error checking, formatting is not proper, etc. What I need is to build an output of:
physical frame name / vfiler name
group1 full control
I know that the file system permissions are more significant, however we are responsible for providing the share permisssions, the Windows admins are responsible after that.
I have tested from my laptop using Windows 7 and a Windows server 2008r2 system, both running version 22.214.171.124 of the toolkit, the ONTAP version is 8.1.2p4
This underlying API used by the cmdlet "cifs-share-acl-list-iter-start" does not appear to be implemented in the vfiler context. The next best option is probably to use invoke-nassh to run cifs shares in the vfiler context and parsethat CLI output. Not ideal, but at least a way forward.
Message was edited by: ChristopherAustin Madden
UPDATE: A colleague has done exactly what I mentioned above and will post the powershell code later today.