Merge branch 'master' into PD-1631-Add-SMB-Limitations-to-Tutorials-a…

…nd-UI-Ref
truenas · Jan 9, 2025 · ef06727 · ef06727
2 parents e4cc435 + 972eccf
commit ef06727
Show file tree

Hide file tree

Showing 3 changed files with 9 additions and 4 deletions.
diff --git a/content/SCALE/SCALETutorials/Credentials/ManageLocalGroups.md b/content/SCALE/SCALETutorials/Credentials/ManageLocalGroups.md
@@ -30,7 +30,7 @@ To see built-in groups, click the **Show Built-In Groups** toggle. The toggle tu
 
 To create a group, go to **Credentials > Groups** and click **Add**.
 
-{{< trueimage src="/images/SCALE/Credentials/AddGroupGIDConfigSCALE.png" alt="Add Group Screen" id="Add Group Screen" >}}
+{{< trueimage src="/images/SCALE/Credentials/AddGroupScreen.png" alt="Add Group Screen" id="Add Group Screen" >}}
 
 Enter a unique number for the group ID in **GID** that TrueNAS uses to identify a Unix group.
 Enter a number above 3000 for a group with user accounts or enter the default port number as the GID for a system service.
@@ -46,6 +46,11 @@ To allow Samba permissions and authentication to use this group, select **Samba
 To allow more than one group to have the same group ID (not recommended), select **Allow Duplicate GIDs**.
 Use only if absolutely necessary, as duplicate GIDs can lead to unexpected behavior.
 
+Select **SMB Group** to make this group available for permissions editors over SMB protocol, and add the share ACL Editor.
+This is not used for SMB authentication or determining the user session token or internal permissions checks.
+
+Click **Save**.
+
 ## Managing Groups
 
 Click anywhere on a row to expand that group and show the group management buttons.
@@ -70,4 +75,4 @@ Click **Save**.
 
 ### Edit Group
 
-To edit an existing group, go to **Credentials > Groups**, expand the group entry, and click <i class="material-icons" aria-hidden="true" title="Edit">edit</i> **Edit** to open the **Edit Group** configuration screen. See [Groups Screens]({{< relref "LocalGroupsScreens.md" >}}) for details on all settings.
+To edit an existing group, go to **Credentials > Groups**, expand the group entry, and click <i class="material-icons" aria-hidden="true" title="Edit">edit</i> **Edit** to open the **Edit Group** configuration screen. See [Groups Screens]({{< relref "LocalGroupsScreens.md" >}}) for details on all settings.
diff --git a/content/SCALE/SCALEUIReference/Credentials/LocalGroupsScreens.md b/content/SCALE/SCALEUIReference/Credentials/LocalGroupsScreens.md
@@ -36,7 +36,7 @@ Use [**Members**](#update-members) to manage membership and [**Edit**](#edit-gro
 
 Click **Add** to open the **Add Group** configuration screen.
 
-{{< trueimage src="/images/SCALE/Credentials/AddGroupGIDConfigSCALE.png" alt="Add Group Screen" id="Add Group Screen" >}}
+{{< trueimage src="/images/SCALE/Credentials/AddGroupScreen.png" alt="Add Group Screen" id="Add Group Screen" >}}
 
 {{< truetable >}}
 | Setting | Description |
@@ -48,7 +48,7 @@ Click **Add** to open the **Add Group** configuration screen.
 | **Allow all sudo commands** | Select to give group members permission to use all [sudo](https://www.sudo.ws/) commands. Using sudo prompts the user for their account password. |
 | **Allowed sudo commands with no password** | Use to list specific [sudo](https://www.sudo.ws/) commands allowed for group members with no password required. Enter each command as an absolute path to the ELF (Executable and Linkable Format) executable file, for example */usr/bin/nano*. <file>/usr/bin/</file> is the default location for commands. <br> Grants limited root-like permissions for group members when using these commands. Exercise caution when allowing sudo commands without password prompts. It is recommended to limit this privilege to trusted users and specific commands to minimize security risks. |
 | **Allow all sudo commands with no password** | Not recommended. Select to give group members the ability to use all [sudo](https://www.sudo.ws/) commands with no password required. |
-| **Samba Authentication** | Select to allow this group to authenticate to and access data shares with [SMB]({{< relref "/SCALE/SCALETutorials/Shares/_index.md" >}}) samba shares. |
+| **SMB Group** | Select to make this group available for permissions editors over [SMB protocol]({{< relref "/SCALE/SCALETutorials/Shares/_index.md" >}}) (and the share ACL editor). It is not used for SMB authentication or determining the user session token or internal permissions checks. |
 | **Allow Duplicate GIDs** | Not recommended. Select to allow more than one group to have the same group ID. Use only if absolutely necessary, as duplicate GIDs can lead to unexpected behavior. |
 {{< /truetable >}}
 

diff --git a/static/images/SCALE/Credentials/AddGroupScreen.png b/static/images/SCALE/Credentials/AddGroupScreen.png