https://community.netapp.com/t5/Data-Protection/SnapDrive-Account-Required-Filer-Permissions/m-p/58650#M5362 <HTML><HEAD></HEAD><BODY><P>I've done some playing around with the SnapDrive account and discovered that it needs API-* capabilities to do what appears to be everything it needs to do.&nbsp;&nbsp; Is this true or am I missing something?</P><P></P><P>Also, I'd like to restrict the volumes that are visible by the SnapDrive account running on a particular host.&nbsp;&nbsp; For example, I'd like to ensure that HOSTA only see's the volumes and luns specific to HOSTA.&nbsp; HOSTA should not see the volumes/luns belonging to HOSTB or any of the NAS volumes on the filer.&nbsp;&nbsp; Is the SecureAccess.xml the only option for restricting the volume visibility of the SnapDrive account by host or is there something I can do through RBAC only (without using the SecureAccess.xml file)?</P><P></P><P>Thanks,</P><P>Jordan</P></BODY></HTML> Thu, 05 Jun 2025 06:23:25 GMT MRJORDANG 2025-06-05T06:23:25Z https://community.netapp.com/t5/Data-Protection/SnapDrive-Account-Required-Filer-Permissions/m-p/58650#M5362 <HTML><HEAD></HEAD><BODY><P>I've done some playing around with the SnapDrive account and discovered that it needs API-* capabilities to do what appears to be everything it needs to do.&nbsp;&nbsp; Is this true or am I missing something?</P><P></P><P>Also, I'd like to restrict the volumes that are visible by the SnapDrive account running on a particular host.&nbsp;&nbsp; For example, I'd like to ensure that HOSTA only see's the volumes and luns specific to HOSTA.&nbsp; HOSTA should not see the volumes/luns belonging to HOSTB or any of the NAS volumes on the filer.&nbsp;&nbsp; Is the SecureAccess.xml the only option for restricting the volume visibility of the SnapDrive account by host or is there something I can do through RBAC only (without using the SecureAccess.xml file)?</P><P></P><P>Thanks,</P><P>Jordan</P></BODY></HTML> Thu, 05 Jun 2025 06:23:25 GMT https://community.netapp.com/t5/Data-Protection/SnapDrive-Account-Required-Filer-Permissions/m-p/58650#M5362 MRJORDANG 2025-06-05T06:23:25Z https://community.netapp.com/t5/Data-Protection/SnapDrive-Account-Required-Filer-Permissions/m-p/58655#M5363 <HTML><HEAD></HEAD><BODY><P>I was able to use RBAC integrated with DFM to restrict users based on DFM groups.&nbsp; This works great, and access is managed from DFM using accounts created to match the AD user accounts.&nbsp; You can then create the necessary roles and assign the SD access rights.&nbsp;&nbsp; </P></BODY></HTML> Tue, 17 Sep 2013 12:51:43 GMT https://community.netapp.com/t5/Data-Protection/SnapDrive-Account-Required-Filer-Permissions/m-p/58655#M5363 mike_burt 2013-09-17T12:51:43Z