Subscribe

NFS Questions

Hi,

I have an NFSv3 export configured, and a specific host granted "Read Write" access.  When I mount this NFS export on the remote client, all permissions automatically become 777 and is owned by root.  I want the NFS filesystem to be owned by another user, and I don't want permissions to be 777 (so not everyone on the remote host has read/write access to it).

I believe I need to add users with to the Filer's /etc/passwd and /etc/group with UID/GID's that match those on the remote host first of all.  How can I do this?  I don't see an option in useradmin to specify UID/GID.  Do I need to manually drop to a shell and modify /etc/passwd and /etc/group?

How do I keep the export from forcing 777 on the remote host?

Thanks!

Re: NFS Questions

Hello,

Did you  mount teh NFS whith the options vers=3 ?

Question :  Why don't you use NFSv4 ?

Re: NFS Questions

I'm going to test NFSv4 as well.  But, I still think I face the same problems with UID/GID and having to define users in the Filer's /etc/passwd?

Re: NFS Questions

With NFSv4 you dont have to create user on the filer, you define just the  nfs.v4.id.domain that to be the same that you will configure in you client.

To set UID/GID on the file/diretory you could use setfacl commande on the client.

Re: NFS Questions

Ok, so you only use ACL's in NFSv4?  What user/group would own the actual files on the remote host, though?  Thanks for the info!

Re: NFS Questions

whith setfacl you can for exemple leave the root as owner and  set rwx ( or as you need)  right to a list of users.

I guess you are mounting  a qtree, so  you can also change de owner from root to another user with chown command  ( for this, you have to mount the volume and change the owner on the qtree)

Re: NFS Questions

Hi,

If I wish to control access via ACL's on the client side, what options should I export with on the Filer?  Should I also control access per host at the filer using rw=hostname, etc?

Thanks

Re: NFS Questions

hello,

Yes, you sould control access per host on on the filer using rw and root.

On the client, do you have NIS / LDAP for authentification ?

Re: NFS Questions

Yes, but not for every user.  The user who needs to own the files and directories is not a LDAP/NIS user, it is a local /etc/passwd user.

Re: NFS Questions

Ok, got the mount working correctly, but I'm unable to use setfacl.  ACL support is enabled on the filer.

setfacl: hi3: Operation not supported

Client is RHEL6.  Export is mounted with:

filer:/vol/vol4/ePortalShare on /mnt/test type nfs4 (rw,rsize=65536,wsize=65536,hard,intr,proto=tcp,timeo=600,retrans=3,sec=sys,addr=172.26.103.122,clientaddr=172.26.101.56)

Any ideas?

Thanks!