Skip to main content
Version: TOS 7

Users

Through flexible user management, you can create user accounts for each member of your family or organization and manage each user's permissions, such as access to shared folders or storage quotas.

Creating Users

In the TOS system, you can create and manage multiple user accounts. The following information is required when creating a user:

  • Name: Enter the username.
  • Description: Briefly describe the user's purpose (up to 255 characters).
  • Email: Enter the user's email address. System notifications (such as password reset messages) will be sent to this address.
  • Password: Set a password for the user. Ensure the password is secure to prevent leakage or misuse, protecting user privacy and security.
  • Phone: Enter the user's contact number for easier management and communication.
  • Prevent User from Changing Password: After logging in, the user is prohibited from modifying the current account's login password via the [User Settings] function.
  • Storage Quota: Set a storage capacity limit for the user. User storage quotas can only be specified when using the EXT4 file system.
  • Assign User Groups: Assign the user to user groups. If a user is assigned to the admin group, they will have administrator privileges.
  • Shared Folder Access Permissions: Set access permissions to shared folders for the user. When setting shared folder permissions, the system will display the user's actual access permissions based on their individual permissions, the permissions of their user groups, and the permission priority order (Deny > Read/Write > Read Only).
Naming Rules
  1. Usernames must not contain spaces or the following special characters: $ % & ' ( ) * + , / : ; < = > ? @ [ ] ^ ` | ~ , but hyphens ( - ) and underscores ( _ ) are allowed.
  2. Username length must be between 1 and 64 characters and cannot be the same as an existing shared folder name.
  3. When creating or editing users, ensure the username is case-insensitive to meet both Linux system's case sensitivity requirements and SMB service's case-insensitive characteristics.
  4. Usernames are prohibited from using system-reserved names such as: "root", "admin", "homes", etc.
Note
  1. The user created during system initialization is the super administrator, belonging to the admin group with root privileges. The super administrator user cannot be deleted or disabled, the username cannot be modified, and the password can only be changed by the super administrator themselves.
  2. The guest user refers to a guest account specifically designed for accessing your NAS device via the SMB protocol in Windows environments. This account is disabled by default. When the guest account is enabled, users can temporarily access some public resources, such as the public shared folder, without providing a username and password. The guest account can only access shared folders explicitly set to allow guest access. To ensure data security and prevent unauthorized modifications, it is recommended to set shared folders accessible to guests with read-only permissions.

Managing Users

  • Refresh: If the interface does not display the latest user changes (including creation, deletion, or occupancy) promptly, click the refresh button.
  • Search: Enter keywords to find the desired user.
  • Role: The system categorizes users into three types: Super User, Administrator, and Regular User. User roles are determined by their user group membership: users in the admin group are administrators, while users in the alluser group are regular users.
  • Edit: Modify or set the user's personal information, user group assignments, shared folder access permissions, storage quota, and user account expiration time.
  • Import: Used for batch importing user information. It is recommended to first export the standard template from the TOS system or download the table template during import, and then fill in other user information based on this template.
  • Export: Export selected user information. You can choose one or more users to export. If no users are selected, the system will export all user data by default. The exported Excel file includes information such as username, security email, phone, user groups, capacity quota, etc. The password column will be blank to protect privacy.
  • Delete: Deleting a user account will revoke all their system permissions, but the user's data will still be retained.
Note

Please read the instructions in the table carefully before importing user information to avoid upload failures due to format errors or missing required fields. For example: username and password are required fields, and the username must not contain spaces or special characters.

Advanced Settings

  • Enable Password Restriction Rules: The system requires by default that password rules must include uppercase and lowercase letters, numbers, and have a minimum length of 8 characters. You can customize password rules as needed.
  • Enable User Homes Directory: The system enables the homes directory by default. When enabled, the system creates personal space for each user, containing the [Desktop], [Safe] and [My Files] modules. Disabling the homes directory will simultaneously disable the user space's desktop, safe, and my files functions, as well as the TNAS Mobile App's photo backup, TerraSync App's [My Files] function, and Photos App's [Personal Space] function.
  • Enable Recycle Bin: The system enables the Recycle Bin by default. When enabled, a Recycle Bin folder is automatically generated for all user folders within the homes directory.