Hi,
I am in a bit of a dilema. I am running PVE on top of which I am running a VM with TrueNAS among other things. I would like to also run Frigate on Docker in an unpriviledged container running debian 12. The tricky bit is this: I would like for Frigate to record on the NAS using a SMB share, only accessible to the specific SMB user created for Frigate.
Being an unpriviledged container, I firstly mount the SMB to PVE, then bind-mount it to the container. But this way, even though the SMB is mounted using the correct credentials on the PVE host, in the container the permisions change and the share is readonly.
How could I map the share so that the only thing that has access to that SMB share is the user in the container?
I am in a bit of a dilema. I am running PVE on top of which I am running a VM with TrueNAS among other things. I would like to also run Frigate on Docker in an unpriviledged container running debian 12. The tricky bit is this: I would like for Frigate to record on the NAS using a SMB share, only accessible to the specific SMB user created for Frigate.
Being an unpriviledged container, I firstly mount the SMB to PVE, then bind-mount it to the container. But this way, even though the SMB is mounted using the correct credentials on the PVE host, in the container the permisions change and the share is readonly.
How could I map the share so that the only thing that has access to that SMB share is the user in the container?