Access-Based Share Enumeration (ABSE) Not Working in TrueNAS SCALE
Description
Problem/Justification
Impact
Activity
Bug Clerk March 4, 2025 at 2:13 PM
Thank you for submitting this TrueNAS Bug Report! So that we can quickly investigate your issue, please attach a Debug file and any other information related to this issue through our secure and private upload service below. Debug files can be generated in the UI by navigating to System -> Advanced -> Save Debug.
https://ixsystems.atlassian.net/servicedesk/customer/portal/15/group/37/create/153
Bug Clerk March 4, 2025 at 2:00 PM
This issue has now been closed. Comments made after this point may not be viewed by the TrueNAS Teams. Please open a new issue if you have found a problem or need to re-engage with the TrueNAS Engineering Teams.
Andrew Walker March 4, 2025 at 2:00 PM
Access-based share enumeration in this case is about net share enum response.
Bug Clerk March 4, 2025 at 1:59 PM
Thank you for submitting this TrueNAS Bug Report! So that we can quickly investigate your issue, please attach a Debug file and any other information related to this issue through our secure and private upload service below. Debug files can be generated in the UI by navigating to System -> Advanced -> Save Debug.
https://ixsystems.atlassian.net/servicedesk/customer/portal/15/group/37/create/153
Access-Based Share Enumeration (ABSE) is not working as expected when TrueNAS SCALE is joined to an Active Directory (AD) environment. Even after removing @Everyone from the Share ACL and configuring proper permissions, unauthorized users can still see the SMB share in the network browser.
Additionally, inside the root folder of the share, users can see folders they do not have permission to access, although they are correctly denied access when trying to open them.