Folder redirection allows you to redirect the local path of a folder to a network file share. With this feature enabled, based on the trustee assignments, users can access and work with files on a server as if the files are on the local computer and they can also access the files from any other computer on the network. For example, you can redirect the local Documents folder and host it on a network share. The files in the folder are then available to the user from any computer on the network. OES CIFS shares can be used as a target for Folder Redirection.
NOTE:The support for this feature is available only for AD users.
To configure CIFS share as the target path for Folder Redirection:
Identify the users to whom Folder Redirection has to be enabled and create a group of those users.
Based on your AD environment, add this group as a member of OESAccessGrp or DLOESAccessGrp. For more information on the NSS AD infrastructure requirements, see Meeting NSS AD Infrastructure Requirements in the OES 2023: NSS AD Administration Guide.
Create a share to host the redirected folders on the server.
Use the root of the share as the target path for Folder Redirection and not any directory under root. It is recommended to suffix the share name with $ to prevent the share from enumeration. For example, test_share$.
Enable Folder Redirection for the share created by using the command:
novcifs -s --folder-redirection=yes|no -n <share_name>
Add the user group as a trustee on the target path of the Folder Redirection enabled share and assign rwcemf rights.
IMPORTANT:Do not assign supervisor right.
Set the Inherited Rights Filter to None on the target path of the share that is created to host the redirected folders.
The CIFS share can now host the redirected folders.
NOTE:When a user log in to a workstation and redirects the local folder to the network share, a directory with the same user name used for login in created within the share. The user is added as a trustee on this directory with rwcemf rights and Inherited Rights Filter set to None. This implies that only the logged in user has access to all the redirected folders in this user specific directory within the share.