Solved

Netapp UNIX volume with CIFS and NFS shares

Posted on 2009-05-19
4
4,440 Views
Last Modified: 2013-12-16
I have a network appliance filer running Ontap 7.3. I have a UNIX volume/Q-tree with 3.9 TB of allocated storage. I have NFS and CIFS shares pointing to the same volume. The NFS share permissions work fine. On the NFS side I am also able to limit access to certain IP addresses. On the CIFS shares, no matter what permission (ACL) I set, the shares are still open to everyone in the security domain. How do control volume access through the CIFS shares?
0
Comment
Question by:intrax-operations
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 1

Author Comment

by:intrax-operations
ID: 24434390
I realize this is a difficult question. But there must be somebody on this list that can answer it.
0
 
LVL 21

Expert Comment

by:robocat
ID: 24493774

In Filerview -> CIFS -> shares -> manage -> change access

you can manage access to the shares.

0
 
LVL 4

Expert Comment

by:lepiaf
ID: 24569688
yeah, or use the cli commands "cifs access ...".

BTW, if this qtree is unix style, the ACL's will be constructed from the unix permissions. So, you may want to change it to be ntfs security style, which means that the unix permission bits will be constructed from the ACL's instead.

Hope this helps.

Cheers,
LePiaf
0
 
LVL 6

Accepted Solution

by:
bradl3y earned 500 total points
ID: 25910162
Using "Change Access" or the "cifs access" command will allow you to choose which users/groups have access to the cifs share, but will not effect access to individual files/directories within the share.

If all of your users currently have full access to a file they shouldn't, that means their windows user account is mapping to a unix account that has full access to the file. By default, windows accounts will automatically map to a unix account with the same name. Custom mappings can be configured via the /etc/usermap.cfg file.

There are also options on the filer that set the default user in the event that A NT user does not map to a unix user:
walf.default_unix_user
wafl.default_nt_user
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Configuring Apache Camel to send and recieive from QPID Broker 2 74
Linux kernel panic ext3-fs error 14 75
google retention policy 4 134
Recovery from RAID 1 vs RAID 10 4 43
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
Concerto Cloud Services, a provider of fully managed private, public and hybrid cloud solutions, announced today it was named to the 20 Coolest Cloud Infrastructure Vendors Of The 2017 Cloud  (http://www.concertocloud.com/about/in-the-news/2017/02/0…
This video teaches viewers how to encrypt an external drive that requires a password to read and edit the drive. All tasks are done in Disk Utility. Plug in the external drive you wish to encrypt: Make sure all previous data on the drive has been …
How to Install VMware Tools in Red Hat Enterprise Linux 6.4 (RHEL 6.4) Step-by-Step Tutorial

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question