The Groups interface allows you to manage UNIX-style groups on the FreeNAS® system.
NOTE: if Active Directory or OpenLDAP is running on your network, you do not need to recreate the network's users or groups. Instead, import the existing account information into FreeNAS® using Services → Directory Services →Active Directory or Services → Directory Services → LDAP.
This section describes how to create a group and assign it user accounts. The next section will describe how to create user accounts.
If you click Groups → View Groups, you will see a screen similar to Figure 3.2a:
Figure 3.2a: FreeNAS® Groups Management
Each group has an entry indicating the group ID, group name, whether or not it is a built-in group which was installed with FreeNAS®, and whether or not the group's members are allowed to use sudo. If you click a group entry, a Members button will appear. Click this button to view and modify that group's membership.
f you click the Add Group button, you will see the screen shown in Figure 3.2b. Table 3.2a summarizes the available options when creating a group.
Figure 3.2b: Creating a New Group
Table 3.2a: Options When Creating a Group
|Group ID||string||the next available group ID will be suggested for you; by convention, UNIX groups containing user accounts have an ID greater than 1000 and groups required by a service have an ID equal to the default port number used by the service (e.g. the sshd group has an ID of 22)|
|Permit Sudo||checkbox||if checked, members of the group have permission to use sudo|
|Allow repeated GIDs||checkbox||allows multiple groups to share the same group id; this is useful when a GID is already associated with the UNIX permissions for existing data|
Once the group and users are created, you can assign users as members of a group. Click on View Groups then the Members button for the group you wish to assign users to. Highlight the user in the Member users list (which shows all user accounts on the system) and click the >> to move that user to the right frame. The user accounts which appear in the right frame will be added as members of that group.
In the example shown in Figure 3.2c, the data1 group has been created and the user1 user account has been created with a primary group of user1. The Members button for the data1 group has been selected and user1 has been added as a member of that group.
Figure 3.2c: Assigning a User as a Member of a Group
To delete a group, click its Delete Group button. The pop-up message will ask whether or not you would also like to delete all members of that group. Note that the built-in groups do not provide a Delete Group button.