We use cookies to help us improve our webpage. Please read our Cookie Policy .

Online Help

Shared Folders

Here you can manage your shared folders and set up their access rights in relation to users and user groups. Shared folders allow your NAS to become a file server. They are fundamental in sharing files with the outside world. Consequently, correctly setting up their access rights is very important in the management of your data.

  • Invisible in "Network" or "My Network Places": This setting only applies if you are using Microsoft Windows. When you enable this setting, your NAS will cease to automatically appear in "Network" or in "My Network Places". Please note that enabling this setting will not affect the connection to your NAS in any way.
  • Enable Network Recycle Bin: After enabling Network Recycle Bin, all files deleted via the following protocols will be moved to the Recycle Bin: SMB, AFP, FTP, ADM File Explorer and WebDAV.
    The recycle bin is enabled by default when adding a shared folder in ADM 4.2.1 or above.
  • Empty Recycle Bin: Click this button to empty all contents in this shared folder’s Recycle Bin immediately.

    For detailed settings about empty recycle bin, please go to [Settings] [Network Recycle Bin] for detailed configuration.

  • Encrypt this shared folder: Here you can choose whether or not you want to encrypt your shared folder and whether or not you want to auto-mount it at system startup. Should you choose to encrypt your folder, after the system restarts, you will have to manually enter the password or import the encryption key for the folder in order to access it. Encrypted folders are normally used for the storage of critical or confidential data. Should you lose your NAS you still needn’t worry about your data leaking out and falling into the wrong hands.
  • Export or import encrypted key: Selecting “Export encrypted key” will download the encrypted key to your computer. When you need to mount an encrypted folder, you can select “Enter Password” or “Import encrypted key” to mount the shared folder and begin accessing it.
    Reminder: You can choose to enable or disable encryption for folders even after they have been created. Encryption is available for use with all shared folders and is not just limited to system default folders. The access speed for encrypted folders will normally be slower than for unencrypted folders.
    Warning:
    1. When choosing to use encrypted shared folders, please make it a point to remember your password. Should you forget your password, the data in the shared folder will become unrecoverable.
  • NFS Privileges: Here you can set NFS privileges for individual folders after first enabling NFS service.

About Shared Folders

After initialization, the system will automatically create a shared folder "public". By default, all users can access the files in this folder. Additionally, the system will automatically create a personal folder for each user (using the user's account name) that by default, can only be accessed by the mentioned user.


  • Windows ACL: Here you can choose to enable or disable Windows ACL for specified shared folders.

About Windows ACL

  1. After enabling Windows ACL for a shared folder, the shared folder and all subfolders and files contained within it can be assigned user or group permissions.
  2. The following shared folders do not support Windows ACL permissions: Home, User Homes, PhotoGallery, Web, Surveillance, MyArchive, Network Recycle Bin, virtual devices, external devices (USB hard drives, optical drives).
  3. After enabling Windows ACL you will be able to use ADM’s File Explorer or Microsoft Windows Explorer to configure permissions. After disabling Windows ACL you will only be able to configure permissions from within ADM's File Explorer.
  4. If you enable Windows ACL and then later decide to disable it, all file and folders will be re-assigned with Read & Write permissions for all users.
  5. No matter if you are using Windows ACL or not, users will still require shared folder and file permissions in order to access files.

  • Folder - Access Rights: Shared folders access rights are the first level of access rights that will be examined. You can edit them here.

Permission Mapping Table

Deny Access Read & Write Read Only No Settings
Deny Access Deny Access Deny Access Deny Access Deny Access
Read & Write Deny Access Read & Write Read & Write Read & Write
Read Only Deny Access Read & Write Read Only Read Only
No Settings Deny Access Read & Write Read Only Deny Access

1 : User access rights for shared folders

2 : Group access rights for shared folders

Priority of access rights: Deny Access Read & Write Read Only No settings


  • ADM 4.2.6 introduces support for WORM in shared folders on Btrfs volumes which can help add additional protection for important data. Shared folders with WORM enabled can help organizations comply with various data retention regulations and compliance standards to safeguards data from unauthorized access, tampering and malware. Enabling WORM functionality will automatically disable the network recycle bin for the shared folder.

    WORM System Requirements: AS52, 53, 54, Lockerstor, Lockerstor Gen2, Lockerstor Pro, Flashstor.

WORM shared folders

WORM (Write Once, Read Many) is a data storage technology that only allows data to be written to a storage device once and prevents it from being deleted or modified. Data stored on WORM-compliant storage is immutable. This means that once data has been written to a WORM-compliant storage device, it cannot be modified. This plays a key role when it comes to addressing data security and compliance requirements as well as protecting against ransomware and other attacks.


WORM mode has been activated, it cannot be deactivated.

  • Governance mode:
    A WORM shared folder set to Governance Mode does not allow modification or deletion of files within the set retention period. Only authorized system administrators have permissions to delete the WORM shared folder, delete the volume a WORM folder resides in or reset the NAS to factory settings. WORM serves as an additional piece of protection for critical data, shielding valuable assets from unauthorized access.
  • Compliance mode:
    Once a WORM shared folder is set to Compliance Mode, not only are files in that shared folder unable to be modified or deleted within the set retention period, it also bars everyone from deleting that WORM shared folder, the volume it resides in as well as barring everyone from resetting the NAS to factory settings. WORM Compliance mode ensures compliance in industries like finance and healthcare, where immutable data storage is mandated for enhanced security and privacy.

    Note: It is not possible for anyone to delete a volume and reinitialize a NAS that contains a WORM shared folder set to compliance mode. Administrators may need to double check the relevant instructions again before applying these settings to set this shared folder to compliance mode.


WORM settings:

Enabling the auto lock means that files will be automatically locked upon final write. After writing, they cannot be renamed, modified, or deleted after specifying a grace period. For detailed settings on individual folders or files, please go to File Explorer More for detailed configuration.

When creating a WORM shared folder, the auto lock is turned off by default. To enable the auto lock, you may need to set the following options:

  • Auto-lock time settings:
    Set the Auto-lock time here, default is three hours, maximum is seven days. Selecting “Immediately lock” will lock a file as soon as it is written.
  • Lock retention period:
    Sets the lock retention period. Default is three years, minimum is one day, and maximum is one hundred years. You can also choose to lock permanently here.

    WORM will even prevent the system time from being tampered with and shorten the lock time of the WORM shared folder. Once a lock time is set, it can only be extended but not shortened. The actual lock time may be longer than initially set. Lock time may be extended due to factors such as system shutdown or dismounted volume.

  • Lock status:
    File lock status of WORM shared folders supports "Append-only" and "Immutable".
    • Append-only:
      When a file is set to Append-only, that file cannot be modified or deleted. However, data can be added to the end of an original file. Example: Cannot change past records of logs, but new records can continuously be added. Append-only files can be changed to Immutable, but the reverse is not possible.
    • Immutable:
      When a file is set to immutable, that file cannot be modified, deleted, or its status changed.

    Using WORM shared folders also preserves the integrity of important historical documents and records, safeguarding them from any modifications while stored, while still maintaining the flexibility to add new records. You can consider setting files lock status as "Append-only".



Learn More

NAS 351: Using WORM Shared Folders