NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
The intention of this proposal is to suggest an easy to implement alternative to the issue created by the Windows 10 deprecation of SMB1. Such a solution could prove to be a competitive advantage over other vendors, not to mention more satisfied customers.
Background: When SMB1 was deprecated, non-admin users were no longer able to attach to the ReadySHARE storage. As a workaround some users have resorted to re-enabling SMB1 (which is considered a security issue).
Proposal: The deprecation of SMB1 did not cause issues for admin users; i.e. they can still enter their "admin"/password credentials to access the shares. Thus, it would make sense that other credentials would also be acceptable.
- Add support for a "user" account, with its password specified by the "admin" user. Note this "user" account would only be used to access ReadySHARE; i.e. it would not provide access to router webpages.
For example, Advanced -> Administration -> Set Password could support fields for both the "admin" and "user" accounts. Password Recovery is not necessary for the "guest" user since the admin can reset it.
All non-admin users will utilize the same "user"/password credentials. These non-admin users can not change the password. They simply share the same credentials to access ReadySHARE. - The ReadySHARE UI currently supports "admin" and "All - no password" access. This would be changed to "admin" and "non-admin" access; where "non-admin" represents both "user" and "All - no password".
This means the UI and Help pages have very few changes. When non-admin users attempt to connect to ReadyShare, they can either enter the "user" credentials, or connect with no credentials as they did in the past (if that still works for them). - The UI supports a checkbox allowing the admin to disable "All - no password". While the shared "user" credentials cannot be considered secure, it is a small step above no password.
Respectfully submitted.
NOTE: The initial plan was to refer to this as a “guest” account. However, the fact that the routers support a “Guest Network” proved to be a cause for confusion. Thus, the term “user” account was selected instead.
2 Comments
Well put and stated. This feature does not work as documented nor does the feature/functionality support obvious use cases, like, needing admin pwd for client access, or, all access without a password.
Since it has been over 4 months and no acknowledgement from NG i guess it is time to go shopping. Has anyone found a decent solution from any other vendors?