https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/NFS-vmware-data-store-permissions/m-p/862#M214 <HTML><HEAD></HEAD><BODY><P>I have two entries for each host in the Client Permissions section of the Export in System Manager 2.2.&nbsp; One is for Allow Read Write, the other is Allow Root Access.&nbsp; Under the Anonymous Access section, the "Grant access to root users on all clients to the shared directory" option is selected.&nbsp; Also, the "Enable setuid and setgid executables" option is checked.</P></BODY></HTML> Fri, 21 Jun 2013 20:49:36 GMT skiser 2013-06-21T20:49:36Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/NFS-vmware-data-store-permissions/m-p/857#M209 <HTML><HEAD></HEAD><BODY><P>I am assigning an NFS datastore to our ESXI environment using system manager 2.2 and having trouble figuring out he proper way of doing the permissions.&nbsp; I would like to restrict access to only my two host and I'm trying to make sure to following the correct procedures because Im don't fully understanding the client permissions verses the root permissions when it comes to VMware.</P><P></P><P>Default settings in system manager:</P><P>Security: UNIX</P><P>Client Permissions: All Host read/write&nbsp; allow:yes</P><P>Anonymous access: Grant access to root users on all clients to the shared directory.</P><P></P><P>The options I am currently using:</P><P></P><P>Security: Unix</P><P>Client permissions: </P><P>&nbsp;&nbsp;&nbsp;&nbsp; - xxx.xxx.xxx.xxx read/write&nbsp;&nbsp;&nbsp; allow:yes</P><P>&nbsp;&nbsp;&nbsp;&nbsp; - xxx.xxx.xxx.xxx read/write&nbsp;&nbsp;&nbsp; allow:yes</P><P>Anonymous access: Grant root access to all hosts</P><P></P><P>is this the proper way to apply the security to an nfs datastore in VMware?&nbsp; Do I need a deny statement for all host under client permissions and even though "grant root access to all hosts" works is that the proper option considering I know VMware must have root access.&nbsp; </P></BODY></HTML> Thu, 05 Jun 2025 06:00:11 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/NFS-vmware-data-store-permissions/m-p/857#M209 stanleyj42 2025-06-05T06:00:11Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/NFS-vmware-data-store-permissions/m-p/862#M214 <HTML><HEAD></HEAD><BODY><P>I have two entries for each host in the Client Permissions section of the Export in System Manager 2.2.&nbsp; One is for Allow Read Write, the other is Allow Root Access.&nbsp; Under the Anonymous Access section, the "Grant access to root users on all clients to the shared directory" option is selected.&nbsp; Also, the "Enable setuid and setgid executables" option is checked.</P></BODY></HTML> Fri, 21 Jun 2013 20:49:36 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/NFS-vmware-data-store-permissions/m-p/862#M214 skiser 2013-06-21T20:49:36Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/NFS-vmware-data-store-permissions/m-p/865#M217 <HTML><HEAD></HEAD><BODY><P>Thanks for the info.&nbsp; That was the answer I was looking for.&nbsp; </P><P></P><P>What does the SetUid and Setgid option actually do though?&nbsp; </P></BODY></HTML> Mon, 01 Jul 2013 14:24:08 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/NFS-vmware-data-store-permissions/m-p/865#M217 stanleyj42 2013-07-01T14:24:08Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/NFS-vmware-data-store-permissions/m-p/869#M220 <HTML><HEAD></HEAD><BODY><P>Have a look at this article.&nbsp; <A href="http://www.techrepublic.com/blog/security/understand-the-setuid-and-setgid-permissions-to-improve-security/2857" target="_blank">http://www.techrepublic.com/blog/security/understand-the-setuid-and-setgid-permissions-to-improve-security/2857</A></P></BODY></HTML> Mon, 01 Jul 2013 14:48:44 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/NFS-vmware-data-store-permissions/m-p/869#M220 skiser 2013-07-01T14:48:44Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/NFS-vmware-data-store-permissions/m-p/872#M222 <HTML><HEAD></HEAD><BODY><P>Please ignore this post I am being stupid!</P></BODY></HTML> Thu, 03 Jul 2014 09:41:02 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/NFS-vmware-data-store-permissions/m-p/872#M222 BEEFY1471 2014-07-03T09:41:02Z