The transition to NetApp MS Azure AD B2C is complete. If you missed the pre-registration, you will be invited to reigister at next log in.
Please note that access to your NetApp data may take up to 1 hour.
To learn more, read the FAQ and watch the video.
Need assistance? Complete this form and select “Registration Issue” as the Feedback Category.

Active IQ Unified Manager Discussions

NFS vmware data store permissions

stanleyj42

I am assigning an NFS datastore to our ESXI environment using system manager 2.2 and having trouble figuring out he proper way of doing the permissions.  I would like to restrict access to only my two host and I'm trying to make sure to following the correct procedures because Im don't fully understanding the client permissions verses the root permissions when it comes to VMware.

Default settings in system manager:

Security: UNIX

Client Permissions: All Host read/write  allow:yes

Anonymous access: Grant access to root users on all clients to the shared directory.

The options I am currently using:

Security: Unix

Client permissions:

     - xxx.xxx.xxx.xxx read/write    allow:yes

     - xxx.xxx.xxx.xxx read/write    allow:yes

Anonymous access: Grant root access to all hosts

is this the proper way to apply the security to an nfs datastore in VMware?  Do I need a deny statement for all host under client permissions and even though "grant root access to all hosts" works is that the proper option considering I know VMware must have root access. 

4 REPLIES 4

skiser

I have two entries for each host in the Client Permissions section of the Export in System Manager 2.2.  One is for Allow Read Write, the other is Allow Root Access.  Under the Anonymous Access section, the "Grant access to root users on all clients to the shared directory" option is selected.  Also, the "Enable setuid and setgid executables" option is checked.

BEEFY1471

Please ignore this post I am being stupid!

stanleyj42

Thanks for the info.  That was the answer I was looking for. 

What does the SetUid and Setgid option actually do though? 

Announcements
NetApp on Discord Image

We're on Discord, are you?

Live Chat, Watch Parties, and More!

Explore Banner

Meet Explore, NetApp’s digital sales platform

Engage digitally throughout the sales process, from product discovery to configuration, and handle all your post-purchase needs.

NetApp Insights to Action
I2A Banner
Public