I got the following security violation notice on Netapp 8.2.2 (System Manager 3.1.3): ============================================================== Description : The remote service accepts connections encrypted using SSL 2.0 and/or SSL 3.0. These versions of SSL are affected by several cryptographic flaws, including: - An insecure padding scheme with CBC ciphers. - Insecure session renegotiation and resumption schemes. ... Solution : Consult the application's documentation to disable SSL 2.0 and 3.0. Use TLS 1.2 (with approved cipher suites) or higher instead. ============================================================== What is the way to disable SSL 2.0 and 3.0 and use TLS 1.2? Thank you.
... View more
I have Netapp version 8.2.2. I have the following security violation on it after scanned with security tool. It said that the solution is to "configure NFS on the remote host so that only authorized hosts can mount its remote shares". There are 12 servers, which are in a cluster, and additional 5 servers access and share the file system. What is the way to build the access list so that only these 17 servers can access the Netapp? ======================================================================================== Synopsis : It is possible to access NFS shares on the remote host. Description : At least one of the NFS shares exported by the remote server could be mounted by the scanning host. An attacker may be able to leverage this to read (and possibly write) files on remote host. The following NFS shares could be mounted : + /vol/LUN_RDM011_vol + Contents of /vol/LUN_RDM011_vol : - . - .. - .snapshot - LUN_RDM11 + /vol/LUN_RDM012_vol + Contents of /vol/LUN_RDM012_vol : - . - .. - .snapshot - LUN_RDM12 + /vol/LUN_RDM21_vol + Contents of /vol/LUN_RDM21_vol : - . - .. - .snapshot - LUN_RDM21 + /vol/LUN_RDM22_vol + Contents of /vol/LUN_RDM22_vol : - . - .. - .snapshot - LUN_RDM22 + /vol/LUN_RDM41_vol + Contents of /vol/LUN_RDM41_vol : - . - .. - .snapshot - LUN_RDM41 + /vol/LUN_RDM51_vol + Contents of /vol/LUN_RDM51_vol : .... .... Solution : Configure NFS on the remote host so that only authorized hosts can mount its remote shares.
... View more
We have a FAS3220 netapp Baie.
I created a Volume : a_datauser1
a_datauser1 online raid_dp, flex nosnap=on, no_atime_update=on, create_ucode=on, 64-bit convert_ucode=on, snaplock_enterprise, no_i2p=on, fractional_reserve=0
On it i created qtree :
a_datauser1 data1 ntfs enabled normal
I share this QTREE :
DATAUSER1 /vol/a_datauser1/data1 everyone / Full Control
NTFS access right are full control for my windows user.
From a Windows workstation ( 2003 / seven / ... ), i connect to this share : \\sea4\datauser1
The problem is :
From windows explorer, if i create manually a folder on this network connection, I have this windows error message :
Error renaming File or folder.
Cannot rename new folder : Access it denied
Make sure the disk is not full or write protected and that the file is not currently in use.
If I press ESC, a folder is created : New Folder
but I am not able to rename it.
So : I am unable to create a folder
From a command prompt / DOS, no problem :
I access to the network connection,
mkdir test
IT works !!!
If un CUT / PASTER a folder / sub directory from C: to this network connection,
it works !!!
So ? On a NAS Netapp, troubles with windows explorer ? Unable to create a basic FOLDER ?
Thanks for any ideas about this problem.
... View more
Hello, I recently performed a 'Copy' with XCP it completed successfully. Our Unix admin ask me to change the junction-path for the destination volume. For example: During the copy the path was /export/test123 after the copy I changed it to /test123. My question is can I perform a 'Sync' to this new mount point or do I have to perform a fresh copy? Can 'sync' be used for a src & dst without ever running 'Copy'?
... View more
Hi All, How does NetApp in Cluster Mode, treat spaces in the command for path parameter. For example - cluster::> vserver locks show -vserver svm -path /vol/volume_name/qtree_name/01 abcd/xyz.xls Here the directory "01 abcd" space between 01 and abcd causing incorrect path. Any options to mitigate this. Please help.
... View more