Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 4577
  • Last Modified:

Netapp UNIX volume with CIFS and NFS shares

I have a network appliance filer running Ontap 7.3. I have a UNIX volume/Q-tree with 3.9 TB of allocated storage. I have NFS and CIFS shares pointing to the same volume. The NFS share permissions work fine. On the NFS side I am also able to limit access to certain IP addresses. On the CIFS shares, no matter what permission (ACL) I set, the shares are still open to everyone in the security domain. How do control volume access through the CIFS shares?
0
intrax-operations
Asked:
intrax-operations
1 Solution
 
intrax-operationsAuthor Commented:
I realize this is a difficult question. But there must be somebody on this list that can answer it.
0
 
robocatCommented:

In Filerview -> CIFS -> shares -> manage -> change access

you can manage access to the shares.

0
 
lepiafCommented:
yeah, or use the cli commands "cifs access ...".

BTW, if this qtree is unix style, the ACL's will be constructed from the unix permissions. So, you may want to change it to be ntfs security style, which means that the unix permission bits will be constructed from the ACL's instead.

Hope this helps.

Cheers,
LePiaf
0
 
bradl3yCommented:
Using "Change Access" or the "cifs access" command will allow you to choose which users/groups have access to the cifs share, but will not effect access to individual files/directories within the share.

If all of your users currently have full access to a file they shouldn't, that means their windows user account is mapping to a unix account that has full access to the file. By default, windows accounts will automatically map to a unix account with the same name. Custom mappings can be configured via the /etc/usermap.cfg file.

There are also options on the filer that set the default user in the event that A NT user does not map to a unix user:
walf.default_unix_user
wafl.default_nt_user
0

Featured Post

Become an Android App Developer

Ready to kick start your career in 2018? Learn how to build an Android app in January’s Course of the Month and open the door to new opportunities.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now