QNAP TS-1685 Manual
Læs gratis den danske manual til QNAP TS-1685 (104 sider) i kategorien Server. Denne vejledning er vurderet som hjælpsom af 9 personer og har en gennemsnitlig bedømmelse på 3.8 stjerner ud af 5 anmeldelser. Har du et spørgsmål om QNAP TS-1685, eller vil du spørge andre brugere om produktet?
Side 1/104
QTS 5.0.x
User Guide
Document Version: 8
03/03/2023
Conguring USB QuickAccess Authentication ............................................................................................. 398
Thunderbolt Interface ..................................................................................................................398Conguration
Enabling T2E with Pro........................................................................................................................ 399Qnder
Enabling T2E on macOS................................................................................................................................... 399
Updating the Firmware of a Network Expansion Card..................................................................................... 399
11. Network & File Services
About Network & File Services............................................................................................................................. 401
QNAP Service Ports................................................................................................................................................401
Conguring Network Access Settings.................................................................................................................402
Conguring Service Binding Settings ............................................................................................................403
Conguring Proxy Server Settings..................................................................................................................403
Conguring Reverse Proxy Rule Settings.......................................................................................................404
Modifying Reverse Proxy Rules.......................................................................................................................405
Conguring Network Protocol Settings..............................................................................................................406
Conguring Telnet Connections......................................................................................................................406
Conguring SSH Connections......................................................................................................................... 407
Editing SSH Access Permissions......................................................................................................................407
Conguring SNMP Settings............................................................................................................................. 408
Downloading the SNMP MIB........................................................................................................................... 409
Conguring File Sharing Protocol Settings.........................................................................................................410
Conguring Samba (Microsoft Networking) Settings...................................................................................410
Conguring AFP (Apple Networking) Settings.............................................................................................. 413
Conguring NFS Service Settings....................................................................................................................413
Accessing FTP (QuFTP Service) Settings......................................................................................................... 415
Conguring WebDAV Settings.........................................................................................................................415
Enabling Service Discovery Settings....................................................................................................................417
Enabling the UPnP Discovery Service.............................................................................................................417
Enabling the Bonjour Discovery Service........................................................................................................ 418
Network Recycle Bin Management..................................................................................................................... 418
Conguring the Network Recycle Bin.............................................................................................................418
Deleting All Files in the Network Recycle Bin................................................................................................ 419
Restricting Access to the Network Recycle Bin..............................................................................................419
12. myQNAPcloud
Getting Started.......................................................................................................................................................420
Account Setup........................................................................................................................................................ 420
Creating a QNAP ID.......................................................................................................................................... 420
Registering a Device to myQNAPcloud.......................................................................................................... 421
Installing myQNAPcloud Link..........................................................................................................................422
Overview................................................................................................................................................................. 422
Conguring UPnP Port Forwarding.....................................................................................................................423
Conguring DDNS Settings.................................................................................................................................. 424
Restarting DDNS Service.......................................................................................................................................424
Conguring Published Services........................................................................................................................... 425
Enabling myQNAPcloud Link................................................................................................................................425
Conguring Device Access Controls....................................................................................................................425
Installing an SSL ..................................................................................................................................426Certicate
13. App Center
Navigation.............................................................................................................................................................. 428
Left Panel........................................................................................................................................................... 428
Toolbar............................................................................................................................................................... 428
App Management.................................................................................................................................................. 429
Viewing App Information.................................................................................................................................429
Buying an App License..................................................................................................................................... 430
QTS 5.0.x User Guide
7
Help Request.......................................................................................................................................................... 526
Submitting a Ticket........................................................................................................................................... 527
Remote Support.....................................................................................................................................................528
Enabling Remote Support................................................................................................................................528
Extending Remote Support............................................................................................................................. 528
Disabling Remote Support...............................................................................................................................528
Diagnostic Tool.......................................................................................................................................................529
Downloading Logs............................................................................................................................................ 529
Performing an HDD Standby Test...................................................................................................................529
Performing an HDD Stress Test.......................................................................................................................529
20. Console Management
Enabling Secure Shell (SSH)..................................................................................................................................530
Enabling SSH on the NAS................................................................................................................................. 530
Enabling SSH on the NAS Using Pro.................................................................................................530Qnder
Accessing Console Management.........................................................................................................................530
Accessing Console Management from Windows..........................................................................................530
Accessing Console Management from Mac...................................................................................................531
Logging In to Console Management...................................................................................................................531
Managing Existing Applications...........................................................................................................................531
Activating or Deactivating a License................................................................................................................... 532
Sorting and Filtering System Logs.......................................................................................................................533
Showing Network Settings................................................................................................................................... 535
Restoring or Reinitializing the Device................................................................................................................. 535
Rebooting the NAS................................................................................................................................................ 535
Rebooting the Device Into Rescue Mode.......................................................................................................535
Rebooting the Device Into Maintenance Mode.............................................................................................536
10
Note
This step is only required if the NAS supports installing more than one operating system and
the default operating system for installation is not QTS.
The NAS restarts and the smart installation screen shows QTS as the operating system to install.
8. Start Smart InstallationClick .
9. Specify a version using any of the following methods. rmware
Methods User Actions
Current version Current versionSelect .
Latest available version a. Latest available versionSelect .
b. Check for UpdateClick
The system checks for the latest updatermware
available for your device. If a newer version is
available, the system downloads the updatermware
and restarts the NAS.
Uploaded version a. Uploaded versionSelect .
b. BrowseClick .
The upload window appears.le
c. Select a rmware le.
10. NextClick .
The Enter the NAS name and administrator’s password screen appears.
11. Specify the following information.
• : Specify a name with 1 to 14 characters. The name can contain letters (A to Z, a to z),NAS Name
numbers (0 to 9), and hyphens (-), but cannot end with a hyphen.
• : Specify an administrator username that contains 1 to 32 characters. The name canUsername
contain letters (A to Z, a to z), numbers (0 to 9), and hyphens (-), multi-byte Chinese, Japanese,
Korean, and Russian characters.
The username cannot contain the following special characters: grave accent (`), asterisk (*), equal
sign (=), plus sign (+), square brackets ([ ]), curly brackets ({}), slash (\), vertical bar (|), semicolon
(;), colon (:), apostrophe ('), quotation mark ("), comma (,), less than sign (< ), greater than sign (>),
backslash (/), question mark (?), percent sign (%), dollar sign ($), and the space character.
Important
To protect your NAS from brute force attacks, create a new system administrator account
during QTS initialization to disable the default "admin" account.
• : Specify an administrator password with 1 to 64 characters. The password can containPassword
any ASCII characters.
• : Enter the new administrator password again.Conrm Password
12. NextClick .
The screen appears.Set the date and time
13. Specify the time zone, date, and time using any of the following methods:
QTS 5.0.x User Guide
Overview 14
No. Element Possible User Actions
4Volume Control Important
This feature is only available on models with certain
hardware specications.
Click the button to view the following:
• Media Volume: Click and drag the slider thumb to adjust the audio
volume for applications that use the built-in speaker or line-out jack.
• HD Station
• Music Station
• OceanKTV
• Audio Alert Volume: Click and drag the slider thumb to adjust the
volume of system audio alerts.
5Background Tasks • Hover over the button to see the number of ongoing background
tasks. Examples of background tasks include backup andle
multimedia conversion.
• Click the button to see the following details for each background
task:
• Task name
• Task description
• Progress (percentage of completion)
• Click to stop a task.
6 • Hover over the button to view the number of external storageExternal Devices
devices and the number of printers that are connected to the USB
and SATA ports on the NAS.
• Click the button to view the details for each connected device.
• Click a listed device to open File Station and view the contents of the
device.
QTS 5.0.x User Guide
Overview 24
No. Element Possible User Actions
7 • Hover over the button to see the number of recent errors andEvent Notications
warnings.
• Click the button to view the following details for each event:
• Event type
• Description
• Timestamp
• Number of instances
• Click a list entry to view the related utility or application screen.
Clicking a warning or error log entry opens the window.Event Log
• Click to open .More>> QuLog Center
• Click to delete all list entries.Clear All
8 Click the picture to open the screen.Options prole Options
9 Click the button to view the last login time and the following menu[USER_NAME]
items:
• : Opens the windowOptions Options
• : Keeps the NAS powered on but reduces powerSleep signicantly
consumption
Note
This feature is only available on models with certain
hardware specications.
• : Restarts the NASRestart
• : Shuts down QTS and then powers the NASShutdown o
Tip
You can also power the NAS using one of theo
following methods:
• Press and hold the power button for 1.5 seconds.
• Open Pro, locate the device in the list. Right click on theQnder
device and select .Shut down Device
• Open Qmanager, and then go to > Menu System Tools >
System . Tap .Shutdown
• : Logs the user out of the current sessionLogout
QTS 5.0.x User Guide
Overview 25
Dashboard
The dashboard opens in the lower right corner of the desktop.
Tip
You can click and drag a section onto any area of the desktop.
No. Section Displayed Information User Actions
1 System
Health
• NAS name
• Uptime (number of
days, hours, minutes
and seconds)
• Health status
Click the heading to open > >Control Panel System
System Status System Information > .
If disk-related issues occur, click the heading to open
Storage & Snapshots.
2 Hardware
Information
• System temperature
• CPU fan speed
• System fan speed
Click the heading to open > >Control Panel System
System Status Hardware Information > .
3 Resource
Monitor
• CPU usage in %
• Memory usage in %
• Network upload and
download speeds for
each adapter.
Click the heading to open > >Control Panel System
Resource Monitor Overview > .
QTS 5.0.x User Guide
Overview 29
# Element Description Possible User Actions
8 This the user about importantNotications noties
system events that may require user
action. If there are multiple notication
groups, notices are arranged according
to the type on a noticenotication
board. You can also view innotications
Notice Board.
For details, see Task Bar.
Tip
When you initialize QTS, the
Getting Started guide will
appear in afternotications
installation.
Click a to open thenotication
corresponding utility or app.
Qboost
Qboost is a system utility that monitors and enables you to manage memory consumption. You can
download the utility from App Center. It provides the following information:
# Section Description User Actions
1 Memory A graphic showing memory usage on the
NAS.
• Blue: Available memory, expressed as
a percentage. Available memory is the
sum of free memory, memory,buer
cache memory, and other reclaimable
memory.
• Green: Free memory, expressed
as a percentage. Free memory is
memory that is currently unused and
unallocated.
Click to clear the memoryOptimize buer
(block level) and cache memory level).(le
Hover the pointer over the memory
widget to see the amount of available
memory and free memory in MB, GB, or
TB.
QTS 5.0.x User Guide
Overview 34
For details, see .File Station
• Access via shared folders mounted on your computer.les
You can mount a shared folder as a network drive on your computer. This allows you to directly access
mounted shared folders using the manager on your Windows or macOS computer.le
For details, see:
•Mapping a Shared Folder on a Windows Computer
•Mounting a Shared Folder on a Mac Computer
Backing Up Data
Regular backup is crucial for data protection. QNAP provides various backup solutions to ensure the
availability of your data. You can start backup up your with the following tools designed to meet yourles
essential backup needs.
Hybrid Backup Sync allows you to back up, restore, and synchronize the data on your local NAS to remote
NAS, external devices, cloud storage services, and vice versa. You can also take snapshots for the volumes
on your local NAS and then use Snapshot Replica to back up these snapshots to a remote NAS.
• Use Hybrid Backup Sync to back up your NAS data.
a. Install Hybrid Backup Sync on the NAS.
b. Create a backup job or a sync job.
Hybrid Backup Sync is a comprehensive solution for data backup and disaster recovery. You can
create several types of backup and sync jobs between the local NAS and multiple destinations
(including remote NAS, external devices, and cloud storage services). Hybrid Backup Sync enhances
data deduplication and encryption for your backup data. This essential tool also provides various
features to facilitate job conguration and management.
For details, see .Hybrid Backup Sync Help
• Take and back up snapshots for your NAS data.
a. Take snapshots for volumes.
b. Use Snapshot Replica to back up snapshots.
An essential feature for data protection, a snapshot records the state of a volume at a point inspecic
time. Using a snapshot, you can restore a volume to a previous state or restore the previous versions of
les or folders. You can view and manage your snapshots in Storage & Snapshots.
To further protect your data, you can use Snapshot Replica to back up your snapshots to another
storage pool on the local NAS or to a remote NAS. In the event of a disaster, you can choose to recover
your data on the source NAS or on the destination NAS.
For details, see:
•Taking a Snapshot
•Creating a Snapshot Replica Job
Conguring Privilege Settings
QTS allows you to create user accounts and user groups, specify user privileges, and congure shared folder
permissions. These features are essential for data security and management.
The admin account is the default administrator account in QTS. To enhance your data and device security,
we recommend creating another administrator account and then disabling the admin account.
QTS 5.0.x User Guide
Getting Started 41
For details, see .App Center
2. Purchase licenses in the QNAP Software Store.
QNAP Software Store is an online store where you can purchase licenses and manage your orders.
QNAP provides various types of licenses and subscription plans to meet dierent needs and usage
environments.
For details, see .Licenses
3. Activate licenses in the License Center or License Manager.
Some licenses are automatically activated after being purchased. However, sometimes you must
manually activate a license.
License Center allows you to manage licenses on your local device. allows you andLicense Manager
your organization to manage licenses under your QNAP ID.
For details, see .Licenses
Securing the NAS
All networked devices face constant security threats. To reduce the risk of your data being attacked, we
strongly recommend following the best practices to secure your NAS. In essence, you should prevent
unauthorized access, update your device software regularly, and install security utilities to protect your
device.
1. Prevent unauthorized access to your device.
a. Create a new administrator account and disable the admin account.
The admin account is the default administrator account. Nevertheless, to enhance the security of
your device, we strongly recommend creating another administrator account and then disabling
the admin account.
For details, see .Default Administrator Account
b. Enhance user password strength.
We recommend enhancing your password strength and changing your passwords regularly to
prevent brute-force attacks.
For details, see .Modifying User Account Information
c. Set up 2-step verication.
2-step further enhances the security of user accounts by requiring users to specify averication
security code in addition to their account credentials during the login process.
For details, see .2-step Verication
d. Remove unknown or suspicious accounts.
We recommend verifying user accounts regularly and deleting any unknown or suspicious
accounts.
For details, see .Deleting Users
e. Remove unnecessary permissions from general users.
We recommend restricting the permissions of non-administrator users to limit their access to
system operations and sensitive data. This helps mitigate the impact of a compromised user
account.
For details, see .Modifying User Account Information
f. Remove unknown or suspicious applications.
We recommend only installing applications and utilities that have digital signatures, which
validate software developed by QNAP and other QNAP-trusted developers.
You should regularly check your installed applications and remove any unknown or suspicious
applications from the App Center.
For details, see and .Digital Signatures Uninstalling an App
QTS 5.0.x User Guide
Getting Started 43
Field User Action
Enable HTTP compression Select this option to improve transfer speeds and bandwidth utilization.
This setting is enabled by default.
Warning
Enabling this option may lead to security risks.
Enable secure connection
(HTTPS)
Select this option to allow HTTPS connections.
a. Enable secure connection (HTTPS)Select .
b. Select a TLS version.
The default TLS version is 1.2.
Warning
Selecting the latest TLS version may decrease
compatibility for other clients in your system.
c. Enable strong cipher suites.
d. Specify a port number.
e. Optional:
Select Force secure connection (HTTPS) only to require all users to
connect to the NAS using only HTTPS.
Custom "Server" HTTP
header
Select this option to specify a server HTTP header.
Do not allow QTS embedding
in IFrames
a. Select this option to prevent websites from embedding QTS using
IFrames.
b. Allowed WebsitesClick to allow a website to embed QTS inspecic
IFrames.
c. Allowed WebsitesThe window appears.
d. Optional:
Click to add a website to the list.Add
The window appears.Add Host Name
e. Specify a host name.
f. AddClick .
The host name is added to the allowed websites list.
g. Optional:
Select a website, and then click to delete a website from theDelete
list.
h. ApplyClick .
Enable X-Content-Type-
Options HTTP header
Select this option to protect your device from attacks that exploit MIME
sning vulnerabilities.
Enable Content-Security-
Policy-HTTP header
Select this option to protect your device from attacks that exploit Cross
Site Scripting (XSS) and data injection vulnerabilities.
QTS 5.0.x User Guide
System Settings 46
Note
SSH Telnet HTTP(S), , and are enabled by default.
3. Optional: Specify the following information.
• Time period
• Maximum number of unsuccessful login attempts within the time period
• Amount of time the IP will be blocked
4. ApplyClick .
Conguring Account Access Protection
1. Control Panel System Security Account Access ProtectionGo to > > > .
2. Specify the user type.
3. Select the connection methods you want to protect.
4. Optional: Specify the following information.
• Time period
• Maximum number of unsuccessful login attempts within the time period
5. ApplyClick .
SSL & Private KeyCerticate
Secure Sockets Layer (SSL) is a protocol used for secure data transfers and encrypted communication
between web servers and browsers. To avoid receiving alerts or error messages when accessing the web
interface, upload a Secure Sockets Layer (SSL) from a trusted provider through Server certicate Certicate
or import a custom root to your QNAP device. QNAP recommends you purchase a valid SSLcerticate
certicate from myQNAPcloud SSL Web Service For details, see .Certicate. myQNAPcloud website
Replacing the Server Certicate
Warning
The NAS supports only X.509 PEM and private keys. Uploading an invalidcerticates
security may prevent you from logging in to the NAS through SSL. To resolve thecerticate
issue, you must restore the default security and private key.certicate
1. Control Panel System Security SSL & Private KeyGo to > > > Certicate .
2. Server Go to Certicate.
3. Replace Click Certicate.
The window appears.Replace Certicate
4. Select an option.
Option Description
Import This option allows you to import an SSL and private keycerticate certicate
from your computer.
QTS 5.0.x User Guide
System Settings 51
Task User Action
Add a scheduled action Note
One schedule is shown by default.
a. AddClick .
b. Select the following.
• : Select whether you want to shut down, restart, or turnAction
on the NAS.
• : Select the frequency of the action.Schedule Type
• and : Select the time of day to perform the action.Hour Minute
Remove a scheduled action Select one or multiple schedules.a.
b. RemoveClick .
4. Postpone scheduled restart/shutdown when a replication job is in progressOptional: Select .
5. ApplyClick .
External Device
Uninterruptible Power Supply (UPS)
The NAS supports connecting to uninterruptible power supply (UPS) devices to protect the NAS from
abnormal system shutdowns caused by power disruptions.
NAS Behavior During a Power Outage
The following table describes the possible scenarios during a power outage and the corresponding NAS
behavior.
Phase Scenario NAS Behavior
Phase 1: From the start of the
power outage until the end of the
specied waiting time
The power outage occurs. The NAS detects the remaining
UPS power.
The UPS power is greater than
15%.
Depending on your UPS settings,
the NAS powers or switcheso
to auto-protection mode after the
specied waiting time elapses.
The UPS power is less than 15%. After 30 seconds, the NAS
automatically powers oro
switches to auto-protection mode
regardless of the waitingspecied
time.
The power is restored. The NAS remains functional.
QTS 5.0.x User Guide
System Settings 60
Mode User Actions
USB connection Connect the UPS to the NAS using a USB cable.a.
b. USB connectionSelect .
c. Choose one of the following options.
• Power the server after the power fails for a time periodo specied
• Allow the NAS to enter auto-protection mode after the power fails for a
specied time period
Note
In auto-protection mode, the NAS stops all services and
unmounts all volumes to protect your data. After the power
is restored, the NAS restarts and resumes normal operation.
d. Enable network UPS master(Optional) Select and then specify the IP
addresses to which QTS sends in the event of power failure.notications
Note
This option can only be selected when the UPS is connected to
the NAS via USB.
SNMP connection Connect the UPS to the same network as the NAS.a.
b. SNMP connectionSelect .
c. Specify the IP address of the UPS.
d. Congure the SNMP community.
e. Choose one of the following options.
• Power the server after the power fails for a time periodo specied
• Allow the NAS to enter auto-protection mode after the power fails for a
specied time period
Network standby UPS Connect the UPS to the same network as the NAS.a.
b. Network UPS slaveSelect .
c. Specify the IP address of the UPS server.
d. Choose one of the following options.
• Power the server after the power fails for a time periodo specied
• Allow the NAS to enter auto-protection mode after the power fails for a
specied time period
3. ApplyClick .
Conguring USB Settings
1. Control Panel System External Device USBGo to > > > .
2. Select one of the following options and the settings. congure
QTS 5.0.x User Guide
System Settings 62
Option Description Steps
Advanced system reset This performs a basic system
reset and then restores the QTS
default settings, deleting all users,
user groups, and shared folders
previously created. The user data
stored on the disks is retained.
Note
To retrieve old data
after an advanced system
reset, re-create the
previous folder structure
on the NAS.
Perform an advanced system
reset using one of the following
methods.
• Using QTS:
a. Control PanelGo to
> > System Backup/
Restore Restore to >
Factory Default .
b. Reset SettingsClick .
c. Choose to restart or shut
down the NAS after the
system is reset.
d. OKClick .
• Using the reset button:
a. Power on the NAS.
b. Press and hold the reset
button for 10 seconds.
Restore factory default settings
and format all volumes
This restores the default system
settings and formats all disk
volumes.
1. Control Panel SystemGo to >
> > Backup/Restore Restore
to Factory Default .
2. Restore FactoryClick
Defaults & Format All
Volumes.
Important
Selecting Restore
Factory Defaults &
Format All Volumes will
delete all data on the
NAS. To retain all les
and data on the hard
drive, see Reset to default
settings.
3. Choose to restart or shut
down the NAS after the
system is reset.
4. OKClick .
Reset to default settings This restores the default system
settings without deleting the user
data.
1. Control Panel SystemGo to >
> > Backup/Restore Restore
to Factory Default .
2. Reset SettingsClick .
QTS 5.0.x User Guide
System Settings 71
Task User Action
Change password a. Under , click .Action
The window appears.Change Password
b. Specify a password that contains a maximum of 64 ASCII characters.
Note
For "admin" accounts, the new password cannot be the
default password (1st MAC address).
c. Verify the password.
d. ApplyClick .
Edit account prole a. Under , click .Action
The window appears.Edit Account Prole
b. Edit the settings.
The window provides the following settings notEdit Account Prole
included in the window:Create a User
• : Specify a user description that contains aDescription (optional)
maximum of 50 characters.
• : When selected, QTSDisallow the user to change password
prevents the user from changing the password.
• : Select this option to disable the userDisable this account
account. You can either select to disable the account orNow
specify an .Expiry Date
Note
QNAP recommends users to create a new administrator
account and disable the "admin" account. To create an
administrator account, see Creating an Administrator
Account.
c. Modify the quota for the user.
Note
This option is only available when quotas are enabled.
• : Quota settings do not apply to the user.No Limit
• : Specify a quota for the user.Limit disk space to
• : Group quota settings apply to the user.Use group quotas
Important
Individual quotas may override group quotas.
d. OKClick .
QTS 5.0.x User Guide
Privilege Settings 84
Task User Action
Edit user group membership a. Under , click .Action
The Edit User's Groups window appears.
b. Select or deselect user groups.
c. ApplyClick .
Edit shared folder
permissions
a. Under , click .Action
The window appears.Edit Shared Folder Permission
b. Edit the user's permissions for each shared folder.
c. Apply changes to subfoldersOptional: Select .
d. ApplyClick .
Edit application privileges a. Under , click .Action
The window appears.Edit Application Privileges
b. Select the applications that the user is allowed to access.
c. ApplyClick .
Tip
QNAP recommends denying access to applications and
network services that the user does not require.
By default, administrator accounts have access to all
applications.
Deleting Users
1. Control Panel Privilege UsersGo to > > .
2. Select the users to delete.
Note
Default user accounts cannot be deleted.
3. DeleteClick .
A warning message appears.
4. Also delete the selected user(s)' home folders and dataOptional: Select .
5. YesClick .
Home Folders
Enabling home folders creates a personal folder for each local and domain user on the NAS. When a home
folder is created, the user's home folder appears as a shared folder called . Users can access theirhome
home folder through Microsoft networking, FTP, and File Station.
All user home folders are located in the shared folder. By default, only administrators can access thishomes
folder. If home folders are disabled, home folders become inaccessible to users. However, the folders and
les they contain are not deleted from the NAS. Administrators can still access the folder and eachhomes
user's home folder.
QTS 5.0.x User Guide
Privilege Settings 85
Setting Description
Restrict the access of Recycle
Bin to administrators only for
now
Selecting this option prevents non-administrator users from
recovering or deleting in the Recycle Bin.les
Note
This option is available only when Enable Network
Recycle Bin is selected.
Enable write-only access on FTP
connection
When enabled, only the admin has read and write access to the shared
folder. Other users will only be able to write to the folder.
Only allows applications to
access using the long les le
name format
When selected, applications can only use the long name (LFN)le
format to access in the shared folder.les
Encrypt this folder Folder encryption protects folder content against unauthorized data
access when the drives are physically stolen.
Specify the following information.
a. Input Password
Specify a password that contains 8 to 32 characters except the
following: " $ : = \
This does not support multibyte characters.eld
b. Verify Password
The password must match the previously password.specied
c. Save encryption key
When enabled, QTS automatically unlocks the shared folder after
the NAS restarts.
When disabled, the administrator must unlock the folder after the
NAS restarts.
For details, see .Unlocking a Shared Folder
Warning
• Saving the encryption key on the NAS can
result in unauthorized data access if unauthorized
personnel are able to physically access the NAS.
• If you forget the encryption password, all data will
become inaccessible.
Enable sync on this shared
folder
Selecting this option allows this shared folder to be used with Qsync.
This option is only available if Qsync Central is installed on the NAS.
Enable access-based share
enumeration (ABSE)
When enabled, users can only see the shared folders that they have
permission to mount and access. Guest account users must enter a
username and password to view shared folders.
Enable access-based
enumeration (ABE)
When enabled, users can only see the and folders that they haveles
permission to access.
QTS 5.0.x User Guide
Privilege Settings 93
Editing Shared Folder Permissions
1. Control Panel Privilege Shared Folders Shared FolderGo to > > > .
2. Locate a shared folder.
3. Under , click . Action
The window appears.Edit Shared Folder Permission
4. Select permission typeUnder , select a permission type to edit.
5. Perform any of the following tasks.
Permission Type Description User Action
Users and groups
permission
Edit user and user
group permissions for
shared folders that can
be accessed through
Windows, macOS, FTP, and
File Station.
a. Specify permissions for each user and user group.
b. Optional: Add a user to the list of users with
permissions for the shared folder.
1. AddClick .
The windowSelect users and groups
appears.
2. Select the type of user or user group from the
drop-down menu in the upper left.
3. Specify the permissions for the users you want
to add.
4. AddClick .
QTS adds the users and their corresponding
permissions to the list.
c. Optional: Remove a user from the list of users with
permissions for the shared folder.
1. Click the user you want to remove.
2. RemoveClick .
QTS removes the user from the list.
d. Optional: Modify guest access rights.
Under , select the permissionGuest Access Right
type for guest accounts.
QTS 5.0.x User Guide
Privilege Settings 100
Task User Action
Congure the remote folder
link
a. Under , click .Action
The window appears.Remote Folder Link
b. Name Host Name Remote Shared FolderSpecify the , , and for any
remote folder link.
4. ApplyClick .
Deleting Portal Folders
Note
Ensure that folder aggregation is enabled before performing the following steps. For
details, see .Folder Aggregation
1. Control Panel Privilege Shared Folders Folder AggregationGo to > > > .
2. Select the portal folders that you want to delete.
3. DeleteClick .
A warning message appears.
4. YesClick .
Importing Folder Trees
Note
Ensure that folder aggregation is enabled before performing the following steps. For
details, see .Folder Aggregation
1. Control Panel Privilege Shared Folders Folder AggregationGo to > > > .
2. Import/Export Folder TreeClick .
The Import/Export Folder Tree window appears.
3. Import Folder Tree BrowseUnder , click .
4. Select the that contains the folder tree. le
Important
Ensure that you are importing a valid QTS folder tree to avoid parsing errors.le
5. ImportClick .
A warning message appears.
6. OKClick .
QTS imports the folder tree.
7. OKClick .
8. FinishClick .
Exporting Folder Trees
Note
QTS 5.0.x User Guide
Privilege Settings 104
Note
This setting is only available if the NAS is joined to a domain.
4. ApplyClick .
The window closes.Advanced Options
5. ApplyClick .
Azure Active Directory Single Sign-On (SSO)
Single Sign-On (SSO) is a holistic approach to authenticate users when signing on to applications in Azure
Active Directory. If you enable SSO, a user only needs one login credential to access multiple applications,
irrespective of the platform, domain, or technology used. Without SSO, a user needs a separate credential
to access each application. The NAS supports SSO. Depending on which domain service the NAS joins, the
device will synchronize the domain account information with the appropriate service.
Enabling Azure AD Single-Sign-On
Before starting this task, ensure that you create an application registration. For details, see https://
docs.microsoft.com/en-us/azure/active-directory/develop/howto-create-service-principal-portal. The user
interface on Microsoft Azure is subject to change without notice.
Important
You must complete the following steps before enabling SSO.rst
• Ensure that your NAS has an x86 (Intel or AMD) processor.
• Azure site-to-site VPN. For details, visit Congure https://docs.microsoft.com/en-us/
azure/vpn-gateway/vpn-gateway-howto-site-to-site-resource-manager-portal.
You can also add a custom domain name using the Azure AD portal for the
on-premise Windows AD. For details, visit https://docs.microsoft.com/en-us/azure/
vpn-gateway/vpn-gateway-howto-site-to-site-resource-manager-portal https:// and
docs.microsoft.com/en-us/azure/active-directory/fundamentals/add-custom-domain.
• Azure AD Domain service. For details, see the following:Congure
•Conguring Conguration AD Authentication Using the Quick Wizard
•Conguring AD Authentication Manually
Note
If you want to enable SSO on more than one NAS, you must repeat all of these steps on
each NAS.
1. Control Panel Privilege Domain Security SSOGo to > > > .
2. Enable Azure SSO ServiceSelect .
3. Client IDSpecify .
For details, visit https://docs.microsoft.com/en-us/azure/active-directory/develop/howto-create-service-
principal-portal.
Note
The Client ID is also known as an Application ID.
4. Tenant IDSpecify .
QTS 5.0.x User Guide
Privilege Settings 118
For details, visit https://docs.microsoft.com/en-us/azure/active-directory/develop/howto-create-service-
principal-portal.
5. Reply URLsSpecify .
a. Sign in as an administrator at https://portal.azure.com/#home.
b. Azure Active Directory App registrations Your app All settingsClick , and then click > > >
Reply URLS .
c. Add to the end of the IP address.:8080/cgi-bin
d. Reply URLsCopy and paste the URL into the label on the NAS.eld
6. Public keySpecify the .
Note
• The public key must be a PEM le.
• You can convert a CA to a public key using a Linux environment or an OpenSSL.certicate
7. ApplyClick .
Note
Your NAS login screen changes to include an Azure SSO login option.
LDAP Authentication
A Lightweight Directory Access Protocol (LDAP) directory contains user and user group information stored
on an LDAP server. Administrators can use LDAP to manage users in the LDAP directory and connect
to multiple NAS devices with the same login details. This feature requires a running LDAP server and
knowledge of Linux servers, LDAP servers, and Samba.
Conguring LDAP Authentication
1. Control Panel Privilege Domain SecurityGo to > > .
2. LDAP authenticationSelect .
3. Select the type of LDAP server.
4. Specify the following information.
QTS 5.0.x User Guide
Privilege Settings 119
LDAP Server Type Fields User Action
Remote LDAP server LDAP Server Host Specify the host name or IP address of the LDAP
server.
LDAP Security Select the method that the NAS uses to communicate
with the LDAP server.
• : Use a standard LDAP connection. Theldap://
default port is 389.
• : Use an encryptedldap:// (ldap + TLS)
connection with TLS. The default port is 389.
Newer versions of LDAP servers normally use
this port.
• : Use an encryptedldap:// (ldap + SSL)
connection with SSL. The default port is 686.
Older versions of LDAP servers normally use
this port.
Base DN Specify the LDAP domain.
Example: dc=mydomain,dc=local
Root DN Specify the LDAP root user.
Example: cn=admin, dc=mydomain,dc=local
Password Specify the root user password.
Users Base DN Specify the Organizational unit (OU) where users are
stored.
Example: ou=people,dc=mydomain,dc=local
Group Base DN Specify the OU where groups are stored.
Example: ou=group,dc=mydomain,dc=local
Current Samba ID N/A
LDAP server of the
remote NAS
IP address or NAS name Specify the server IP address or the name of the NAS.
LDAP domain Specify the LDAP domain name.
Password Specify the NAS administrator password.
LDAP server of the
local NAS
N/A N/A
IBM Lotus Domino Remote LDAP serverThis server type includes the same as elds , in addition to
the following:
uidNumber Specify the uid number.
Select .HASH
gidNumber Specify the gid number.
Select .HASH
5. ApplyClick .
The window appears.LDAP authentication options
6. Select which users are allowed to access the NAS.
Note
LDAP authentication options vary depending on when Microsoft Networking is enabled. For
details, see .LDAP Authentication Options
7. FinishClick .
QTS 5.0.x User Guide
Privilege Settings 120
2. Specify domain user information in the following format.
Username Password Description Email, , ,
Important
• Separate values using commas.
• Ensure that the password meets the requirements for domain user accounts.
For details, see .Creating a Domain User
• Specify information for only one user on each line.
Example:
John s8fK4br* John's account john@qnap.com, , ,
Jane 9fjwbXy# Jane's account jane@qnap.com, , ,
Mary f9xn3nS% Mary's account mary@qnap.com, , ,
3. Save the list as a TXT le.
Important
If the list contains multi-byte characters, save the with UTF-8 encoding.le
Creating a CSV Domain User File
1. Create a new workbook in a spreadsheet editor.
2. Specify domain user information in the following format.
• column A: Username
• column B: Password
• column C: Description
• column D: Email
Important
• Ensure that the password meets the requirements for domain user accounts.
For details, see .Creating a Domain User
• Specify information for only one user in each row.
Example:
3. Save the workbook as a CSV le.
Important
If the list contains multi-byte characters, open the using a text editor and then save withle
UTF-8 encoding.
QTS 5.0.x User Guide
Privilege Settings 127
b. Enter the number of days.
Tip
Enter a number between 1 to 999.
c. ApplyClick .
4. Optional: Archive expired logs.
a. Archive logs after expirationSelect .
b. Specify the archive folder.
c. ApplyClick .
5. Locate the scan job you want to manage.
6. Select one of the following options.
Option User Action
Download Select .
QTS downloads the scan job as a text document to your computer.
Tip
To download all job logs, click .Download All Logs
Delete a. Select .
A message appears.conrmation
b. YesClick .
QTS deletes the scan job.
Managing Quarantined Files
Warning
You cannot recover deleted quarantined les.
1. Log on to QTS as administrator.
2. Control Panel Applications Antivirus QuarantineGo to > > > .
3. Locate the or you want to manage.le les
4. Perform one of the following options.
Option User Action
Delete Click .
QTS permanently deletes the selected le.
Delete Selected Files a. Select les.
b. Delete Selected FilesClick .
Only selected in the list are permanently deleted.les
Delete All Files Delete All FilesClick .
All in the list are permanently deleted.les
Restore Click .
QTS restores the to its shared folder.le
QTS 5.0.x User Guide
Services 140
Setting User Action
Enable secure connection
(HTTPS)
Select this option to allow HTTPS connections.
a. Enable secure connection (HTTPS)Select .
b. Select a TLS version.
The default TLS version is 1.2.
Warning
Selecting the latest TLS version may decrease
compatibility for other clients in your system.
c. Enable strong cipher suites.
d. Specify a port number.
Note
The default port is 8081.
e. Optional:
Select Force secure connection (HTTPS) only to require all users
to connect to the NAS using only HTTPS.
Maximum number of clients Enter a maximum client number.
Note
A client number is the number of users that are
allowed to connect to the server.
Do not allow QTS embedding in
IFrames
a. Select this option to prevent websites from embedding QTS using
IFrames.
b. Allowed WebsitesClick to allow a website to embed QTSspecic
in IFrames.
c. Allowed WebsitesThe window appears.
d. Optional:
Click to add a website to the list.Add
The window appears.Add Host Name
e. Specify a host name.
f. AddClick .
The host name is added to the allowed websites list.
g. Optional:
Select a website, and then click to delete a website fromDelete
the list.
h. ApplyClick .
Enable X-Content-Type-Options
HTTP header
Select this option to protect your device from attacks that exploit MIME
sning vulnerabilities.
Enable Content-Security-Policy-
HTTP header
Select this option to protect your device from attacks that exploit Cross
Site Scripting (XSS) and data injection vulnerabilities.
5. ApplyClick .
QTS 5.0.x User Guide
Services 142
Tip
To restore the default settings at any time, click conguration Restore.
QTS enables the web server.
Modifying the php.ini Maintenance File
The php.ini is the default PHP To optimize your website performance, you can modifyle conguration le.
and the default settings in the php.ini such as execution time, memory limit, and maximumcongure le,
le upload size.
Important
This task requires that you enable the Web Server.
For details, see .Web Server
1. Log on to QTS as administrator.
2. Control Panel Applications Web Server Web ServerGo to > > > .
3. php.ini MaintenanceBelow , select one of the following options.
Option User Action
Upload a. UploadClick .
The window opens.Upload php.ini
b. BrowseClick .
The window opens.Open
c. Select a php.ini le.
d. UploadClick .
QTS uploads the le.
Edit a. EditClick .
The window opens.Edit php.ini
b. Edit the php.ini le.
c. ApplyClick .
QTS saves the changes.
Restore a. RestoreClick .
A message appears.conrmation
b. OKClick .
QTS restores the default php.ini le.
Enabling and Creating a Virtual Host
Virtual hosting allows you to use your NAS to host multiple websites.
1. Log on to QTS as administrator.
2. Control Panel Applications Web Server Virtual HostGo to > > > .
3. Enable Virtual HostSelect .
4. ApplyClick .
You can now create a virtual host.
QTS 5.0.x User Guide
Services 143
Conguring the MariaDB Database
Important
• If the SQL server was enabled in QTS 4.5.4 (or earlier) before you updated to QTS
5.0.0 (or later), after the update the system will have automatically downloaded and
installed the MariaDB 5 app and migrated the SQL server data to MariaDB.
• You can install either the MariaDB 5 or MariaDB 10 app. If you install both app versions
on your NAS, MariaDB 5 will be set as the default database server.
You can the MariaDB database using the following methods during setup:congure
Methods Description
Creating a MariaDB database Create a new MariaDB version 5 or Maria DB version 10 database
by the TCP/IP network conguring congurations and database
password.
For details, see .Creating a MariaDB Database
Restoring a MariaDB Database Restore an existing MariaDB version 5 or MariaDB version 10 database
by the TCP/IP network conguring congurations.
For details, see .Restoring a MariaDB Database
Migrating a MariaDB 5 Database
to MariaDB 10
If the MariaDB 10 app is installed on your NAS, you can migrate
an existing MariaDB version 5 database to a MariaDB version 10
database.
For details, see .Migrating a MariaDB 5 Database to MariaDB 10
Creating a MariaDB Database
Warning
Creating a new MariaDB database will overwrite an existing MariaDB database.
1. Log on to QTS as administrator.
2. Control Panel Applications MariaDBGo to > > .
The window opens.MariaDB Setup Wizard
Note
The MariaDB setup wizard only appears during app initialization. To more advancedcongure
database features and settings, use the php.ini maintenance le.
3. StartClick .
The screen appears.Database Actions
4. Create a new databaseSelect .
5. NextClick .
The screen appears.Default Instance Properties
6. Specify a root password.
Important
• The password must contain 8 to 64 bytes of UTF-8 characters.
• The password cannot be "admin" or blank.
QTS 5.0.x User Guide
Services 145
QTS restores the MariaDB database. The screen appears.Finish
Note
It may take a few minutes for the system to restore the database.
8. FinishClick .
QTS enables the MariaDB server.
Migrating a MariaDB 5 Database to MariaDB 10
This feature is only available in the MariaDB 10 app.
1. Log on to QTS as administrator.
2. Install the MariaDB 10 app.
Note
For details, see .Installing an App from App Center
3. Open the MariaDB 10 app.
The window opens.MariaDB Setup Wizard
Note
The MariaDB setup wizard only appears during app initialization. To more advancedcongure
database features and settings, edit the php.ini maintenance For details, see le. Modifying the
php.ini Maintenance File.
4. StartClick .
The screen appears.Database Actions
5. Migrate a MariaDB 5 to a MariaDB 10 databaseSelect .
6. NextClick .
The screen appears.Default Instance Properties
7. Optional: TCP/IP networking.Congure
a. Enable TCP/IP networkingSelect .
Note
This option is enabled by default.
b. Specify the TCP/IP networking port.
Note
The default port is 3307.
8. ApplyClick .
QTS migrates the existing MariaDB 5 database to MariaDB 10. The screen appears.Finish
Note
The data migration may take a few minutes to complete.
9. FinishClick .
QTS enables the MariaDB server.
QTS 5.0.x User Guide
Services 147
Option User Action
Delete a. Select one or more lters.
b. DeleteClick .
A message appears.conrmation
c. YesClick .
QTS deletes the selected lters.
Tip
To view syslog messages, go to Control Panel Applications Syslog Server Syslog > > >
Viewer .
RADIUS Server
You can the NAS to become a remote authentication dial-in user service (RADIUS) server. Thecongure
RADIUS server provides centralized authentication, authorization, and account management for computers
to connect and use as a network service.
Enabling the RADIUS Server
1. Log on to QTS as administrator.
2. Control Panel Applications RADIUS Server Server SettingsGo to > > > .
3. Enable RADIUS ServerSelect .
4. Grant dial-in access to system user accountsOptional: Select .
Note
This option allows local NAS users to access network services using the login credentials for
RADIUS clients.
5. ApplyClick .
Creating a RADIUS Client
A RADIUS client is a client device, client program, or a client software utility. You can create up to 10 clients.
1. Log on to QTS as administrator.
2. Control Panel Applications RADIUS Server RADIUS ClientsGo to > > > .
3. Create a ClientClick .
The window opens.Create a Client
4. Enter the following information.
•Name
•IP Address
•Prex Length
•Secret Key
5. ApplyClick .
QTS creates the RADIUS client.
QTS 5.0.x User Guide
Services 153
Managing RADIUS Clients
1. Log on to QTS as administrator.
2. Control Panel Applications RADIUS Server RADIUS ClientsGo to > > > .
3. Locate the client you want to modify.
4. Perform one of the following options.
Option User Action
Enable Click .
QTS enables the client.
Disable Click .
QTS disables the client.
Edit a. Click .
The window opens.Edit Client
b. Congure the client information.
c. ApplyClick .
QTS saves the client information.
Delete a. Select one or more clients.
b. DeleteClick .
A message appears.conrmation
c. YesClick .
QTS deletes the selected clients.
Creating a RADIUS User
A RADIUS user is the account used for RADIUS authentication. You can create as many users as the NAS
supports.
1. Log on to QTS as administrator.
2. Control Panel Applications RADIUS Server RADIUS UsersGo to > > > .
3. Create a UserClick .
The window opens.Create a User
4. Enter the following information.
•Name
•Password
•Verify Password
5. ApplyClick .
QTS creates the RADIUS user.
Managing RADIUS Users
1. Log on to QTS as administrator.
QTS 5.0.x User Guide
Services 154
Produkt Specifikationer
| Mærke: | QNAP |
| Kategori: | Server |
| Model: | TS-1685 |
Har du brug for hjælp?
Hvis du har brug for hjælp til QNAP TS-1685 stil et spørgsmål nedenfor, og andre brugere vil svare dig
Server QNAP Manualer
15 Juni 2025
13 Oktober 2024
12 Oktober 2024
13 September 2024
2 September 2024
31 August 2024
20 August 2024
19 August 2024
18 August 2024
13 August 2024
Server Manualer
- Revox
- Veritas
- IStarUSA
- Origin Storage
- Dell
- Hanwha
- Promise Technology
- Imation
- Blackmagic Design
- Infortrend
- Valcom
- NETSCOUT
- Planet
- Supermicro
- AMX
Nyeste Server Manualer
22 Juni 2025
21 Juni 2025
20 Juni 2025
19 Juni 2025
7 Juni 2025
1 Juni 2025
9 Marts 2025
9 Marts 2025
9 Marts 2025
30 Januar 2025