Solved

Netapp UNIX volume with CIFS and NFS shares

Posted on 2009-05-19
4
4,376 Views
Last Modified: 2013-12-16
I have a network appliance filer running Ontap 7.3. I have a UNIX volume/Q-tree with 3.9 TB of allocated storage. I have NFS and CIFS shares pointing to the same volume. The NFS share permissions work fine. On the NFS side I am also able to limit access to certain IP addresses. On the CIFS shares, no matter what permission (ACL) I set, the shares are still open to everyone in the security domain. How do control volume access through the CIFS shares?
0
Comment
Question by:intrax-operations
4 Comments
 
LVL 1

Author Comment

by:intrax-operations
ID: 24434390
I realize this is a difficult question. But there must be somebody on this list that can answer it.
0
 
LVL 21

Expert Comment

by:robocat
ID: 24493774

In Filerview -> CIFS -> shares -> manage -> change access

you can manage access to the shares.

0
 
LVL 4

Expert Comment

by:lepiaf
ID: 24569688
yeah, or use the cli commands "cifs access ...".

BTW, if this qtree is unix style, the ACL's will be constructed from the unix permissions. So, you may want to change it to be ntfs security style, which means that the unix permission bits will be constructed from the ACL's instead.

Hope this helps.

Cheers,
LePiaf
0
 
LVL 6

Accepted Solution

by:
bradl3y earned 500 total points
ID: 25910162
Using "Change Access" or the "cifs access" command will allow you to choose which users/groups have access to the cifs share, but will not effect access to individual files/directories within the share.

If all of your users currently have full access to a file they shouldn't, that means their windows user account is mapping to a unix account that has full access to the file. By default, windows accounts will automatically map to a unix account with the same name. Custom mappings can be configured via the /etc/usermap.cfg file.

There are also options on the filer that set the default user in the event that A NT user does not map to a unix user:
walf.default_unix_user
wafl.default_nt_user
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

Problem description :  Some external hard disks / USB flash drives do not show actual space as mentioned in the factory settings. This is a common problem when you use an 8 GB USB drive to make it bootable to install a firmware/ driver on a serv…
Setting up Secure Ubuntu server on VMware 1.      Insert the Ubuntu Server distribution CD or attach the ISO of the CD which is in the “Datastore”. Note that it is important to install the x64 edition on servers, not the X86 editions. 2.      Power on th…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
This video teaches viewers how to encrypt an external drive that requires a password to read and edit the drive. All tasks are done in Disk Utility. Plug in the external drive you wish to encrypt: Make sure all previous data on the drive has been …

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now