Link to home
Start Free TrialLog in
Avatar of bkreynolds48
bkreynolds48

asked on

cannot write to nfs mounted file system on netapp array

cannot write to nfs file system root# chown oracle:dba prodbackup

chown: prodbackup: Not owner


root# ls -al prodbackup

drwxr-xr-x 3 root root 4096 Aug 25 15:40 .
drwxr-xr-x 52 root root 1536 Aug 25 15:29 ..
drwxrwxrwx 2 root root 4096 Aug 25 15:40 .snapshot


root# chmod 777 prodbackup
chmod: WARNING: can't change prodbackup

As root I cannot create a directory on this nfs netapp file system and I want to change the owner/group
Why can't I do this as root?

Avatar of woolmilkporc
woolmilkporc
Flag of Germany image
Hi,
This is called "root quashing"
Basically, if a user with ID 0 is accessing a share, this ID is converted to (usually) -2, to prevent remote root actions.
The share needs to be exported with the "no-root-quash" option.
Don't know whether this is possible with NetApp, however.

wmp
Avatar of bkreynolds48
bkreynolds48

ASKER

If it is possible on a netap how is that done?
Avatar of jeremycrussell
jeremycrussell
Flag of United States of America image
First comment is correct.

In your "exports" file set sec=sys and root=hostname or IP of machine (if you use hostname, you'll want to probably add a host entry to the NetApp.

You can do this through GUI as well I think...

So, you end up with an entry like below.

/vol/nameofvol -sec=sys,rw,root=host

Then you can just reload your exports file using exportfs.
ASKER CERTIFIED SOLUTION
Avatar of woolmilkporc
woolmilkporc
Flag of Germany image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of woolmilkporc
woolmilkporc
Flag of Germany image
For security reasons you can configure additionally (also in NFS -> Manage Exports:

Root Hosts: 1111.1111.111.0/24 (host or subnet)

Avatar of bkreynolds48
bkreynolds48

ASKER

Thanks so much - just started using netapp