Domain
Domain: Refers to an AD (Active Directory) domain. After your TNAS joins the AD domain, domain users can directly log in to TNAS using their domain accounts and passwords. Joining the AD domain takes approximately 30 seconds, after which domain users will be successfully imported.
Join Domain
- Join Domain: Enabling this feature will disable the use of an LDAP server on your device.
- Domain/DNS Server: Enter the domain name and specify the DNS server.
- Username/Password: Provide the username and password of a domain server administrator to join the domain.
Advanced Settings
- DC IP/FQDN: You can specify the IP address or FQDN (Fully Qualified Domain Name) of the Domain Controller (DC) with which the TOS system will communicate.
- Domain NetBIOS Name/Domain FQDN (DNS Name): Separating DC IP/FQDN entries helps avoid confusion with three-level or deeper domains. For example:
FQDN is dc1.tnas.local
NetBIOS should be filled as dc1, and Domain FQDN is tnas.local.
FQDN is dc1.test.tnas.local.
Fill in NetBIOS as dc1.test, and the domain FQDN will be tnas.local.
Fill in NetBIOS as dc1, and the domain FQDN will be test.tnas.local. - Register DNS Interface: Manually select the DNS interface for registration.
- Update Interval: Set the frequency for automatically updating domain users and groups. Alternatively, switch to the Domain Users and Groups page and click Refresh to manually update the list. By default, domain users and groups are updated every 10 minutes.
Domain User Permissions Management
Navigate to Control Panel > Domain/LDAP > Domain Users or Domain Groups, select a domain user, and click the "Edit" button to configure the user's permissions for shared folders. In cases of conflicting permissions settings for domain users, the precedence rule is: Deny > Read-Write > Read-Only.
Note
When logging in to the TNAS device using an AD domain user, please enter the complete AD domain username.