NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Change ip-adres to create new password
When I create a new user user on my readynas102, this user receives an email with his
username and password. The user also receives a url for changing that password.
But this url just provides me with the name of my readynas, not the ip-adres.
How can I change this? Personally I think that this must be changed with login on ssh.
Matsy wrote:
Sorry, if there are some mistakes in my English. I'm dutch and do my best.
I have no Dutch at all (despite transiting through Schiphol regularly) - so you are ahead of me. Your English is fine - and if you need us to reword something, just ask.
Let's clarify then.
Matsy wrote:
Hi Stephen,
This has nothing to do with readycloud. I use a ddns address for connection with my nas via internet. It's not normal that when you create a new user on the nas that all these data are sent via email without encryption.
When I create a new local user on my NAS, there is an optional email field. Frankly, I never have filled it out, and in my first reply had forgotten that email field even existed. But if I fill it out, then the user does get an unencrypted email.
FWIW, the NAS can (and usually is) set up to send the email on an encrypted link to the SMTP server, and the end user can (and usually is) receiving that email on an encrypted link as well. You are trusting the email server with the message text for sure - but there is no prevasively deployed mechanism for end-to-end email encyption. So the email text was encrypted, many users simply wouldn't be able to decrypt it.
If you don't want that email to be sent, then all you need to do is leave the email address blank. You can then communicate the correct information to that user any way you wish, taking responsibility for the security.
Matsy wrote:
Hi Stephen,
A link is given to change the password, but you can do nothing
As far as the URL goes... You are of course correct in saying that the local machine name only works on the local LAN. However, the link still is useful for local enterprises that are setting up email accounts for users on premise. So even though it doesn't work in all use cases, I think it does work in the most common local user case where an email is useful.
For over-the-internet connections you need the DDNS name, and not the IP address. The whole reason for DDNS in the first place is that your router doesn't have a persistent WAN IP address. And that DDNS URL might need to include the secondary https port number - or it might not. That depends on how your DDNS service is provisioned. There is no way I can see for the NAS to actually know the URL needed for over-the-internet access.
While it is possible for the NAS to detect the external IP address of the edge router, that also might not work. One reason is that IP address is usually subject to change w/o notice. Also, that external IP address isn't guaranteed to work on the local LAN. Many users prevent their NAS from being reached over the internet. So blindly putting the edge router IP into the link doesn't solve the problem either.
I do take your point on this. But there are a lot of scenarios, and the NAS can't figure out a link automatically that works in all cases. The only solution I see is to allow the administrator to edit the email before it is sent. You could submit an idea to the idea exchange ( https://community.netgear.com/t5/Idea-Exchange-for-ReadyNAS/idb-p/idea-exchange-for-storage?topic-zoom=&sort-by=&date-range=all ) suggesting that enhancement. Netgear does review that list, and if it gets enough votes they'd likely implement it.
Matsy wrote:
...This will only be possible in the operating system itself, and that can only via ssh.
This is totally not true. The NAS itself can of course be configured with a local static IP address. That does NOT require ssh at all, it is done through the admin web interface. You can also reserve an IP address in the router - through its admin interface, NOT through ssh. Either way, you don't want ordinary users to change that address, as that will break your network.
And in your specific case, the IP address isn't the local LAN address set in the NAS (or router). With DDNS you are talking about the address that is assigned to the router by your ISP. The ISP owns that address, and it cannot be set in your NAS or in your router for that matter.
5 Replies
Replies have been turned off for this discussion
If this is with readycloud, then you definitely want the NAS name, and not the IP address.
Just like any internet connection, the most stable way to connect is using the name.
And you don't want to give ReadyCloud users SSH access to your NAS. That's crazy.
Hi Matsy,
Welcome to the community!
It is how it's designed and there's no steps or procedure on how to change it. Maybe other member's of the community might give you tips but we don't recommend changing it.
Let us know if you have other questions.
Kind regards,
BrianL
NETGEAR Community TeamHi BrianL
My basic question is, why data is transmitted unencrypted when you create a new user.
Why can I not enter my ddns adress in the settings, it would be logical that one can fill this ddns address in the overview.It is not user friendly it is always just try and find out. The manual is very superficial. Does not go deep in the settings.
I'm from the netgear nas not completely satisfied.
Hi Stephen,
This has nothing to do with readycloud. I use a ddns address for connection with my nas via internet. It's not normal that when you create a new user on the nas that all these data are sent via email without encryption. A link is given to change the password, but you can do nothing because it just gives the name of the nas. Not the correct IP address.
And that's the problem, there is nowhere provided a field in the settings to enter such an address. This will only be possible in the operating system itself, and that can only via ssh.
The question is, where?Sorry, if there are some mistakes in my English. I'm dutch and do my best.
Matsy wrote:
Sorry, if there are some mistakes in my English. I'm dutch and do my best.
I have no Dutch at all (despite transiting through Schiphol regularly) - so you are ahead of me. Your English is fine - and if you need us to reword something, just ask.
Let's clarify then.
Matsy wrote:
Hi Stephen,
This has nothing to do with readycloud. I use a ddns address for connection with my nas via internet. It's not normal that when you create a new user on the nas that all these data are sent via email without encryption.
When I create a new local user on my NAS, there is an optional email field. Frankly, I never have filled it out, and in my first reply had forgotten that email field even existed. But if I fill it out, then the user does get an unencrypted email.
FWIW, the NAS can (and usually is) set up to send the email on an encrypted link to the SMTP server, and the end user can (and usually is) receiving that email on an encrypted link as well. You are trusting the email server with the message text for sure - but there is no prevasively deployed mechanism for end-to-end email encyption. So the email text was encrypted, many users simply wouldn't be able to decrypt it.
If you don't want that email to be sent, then all you need to do is leave the email address blank. You can then communicate the correct information to that user any way you wish, taking responsibility for the security.
Matsy wrote:
Hi Stephen,
A link is given to change the password, but you can do nothing
As far as the URL goes... You are of course correct in saying that the local machine name only works on the local LAN. However, the link still is useful for local enterprises that are setting up email accounts for users on premise. So even though it doesn't work in all use cases, I think it does work in the most common local user case where an email is useful.
For over-the-internet connections you need the DDNS name, and not the IP address. The whole reason for DDNS in the first place is that your router doesn't have a persistent WAN IP address. And that DDNS URL might need to include the secondary https port number - or it might not. That depends on how your DDNS service is provisioned. There is no way I can see for the NAS to actually know the URL needed for over-the-internet access.
While it is possible for the NAS to detect the external IP address of the edge router, that also might not work. One reason is that IP address is usually subject to change w/o notice. Also, that external IP address isn't guaranteed to work on the local LAN. Many users prevent their NAS from being reached over the internet. So blindly putting the edge router IP into the link doesn't solve the problem either.
I do take your point on this. But there are a lot of scenarios, and the NAS can't figure out a link automatically that works in all cases. The only solution I see is to allow the administrator to edit the email before it is sent. You could submit an idea to the idea exchange ( https://community.netgear.com/t5/Idea-Exchange-for-ReadyNAS/idb-p/idea-exchange-for-storage?topic-zoom=&sort-by=&date-range=all ) suggesting that enhancement. Netgear does review that list, and if it gets enough votes they'd likely implement it.
Matsy wrote:
...This will only be possible in the operating system itself, and that can only via ssh.
This is totally not true. The NAS itself can of course be configured with a local static IP address. That does NOT require ssh at all, it is done through the admin web interface. You can also reserve an IP address in the router - through its admin interface, NOT through ssh. Either way, you don't want ordinary users to change that address, as that will break your network.
And in your specific case, the IP address isn't the local LAN address set in the NAS (or router). With DDNS you are talking about the address that is assigned to the router by your ISP. The ISP owns that address, and it cannot be set in your NAS or in your router for that matter.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
