Manualshelf

Installation manual

ManualsBrandsAcopia Networks ManualsHome building and Decor810-0044-00
141142143144145146147148149150
Configuring a Namespace
Configuring Windows Authentication (CIFS)
7-14 CLI Storage-Management Guide
You cannot change the character encoding after any of the namespace’s managed
volumes are enabled, as described in a later chapter.
Configuring Windows Authentication (CIFS)
This section applies only to a namespace that supports CIFS. Skip to the next section
if this is an NFS-only namespace.
To configure Windows NTLM or Kerberos authentication for the namespace, you
first declare the proxy user for the namespace. A proxy user configuration contains a
Windows domain, username, and password. The namespace software uses these
credentials for authenticating with back-end CIFS shares. This is for operations that
do not directly involve a Windows client: initial inventory of the CIFS shares and
migration of files from one share to another. (Migration is a method for enforcing
several namespace policies, which are described in later chapters.)
You must configure a proxy user for the namespace’s domain ahead of time: the steps
were described earlier in “Adding a Proxy User” on page 3-2. The proxy user must
belong to the Backup Operators group for all CIFS filers in the namespace. You can
use the proxy user in
probe exports to test this; this was described in “Probing for
CIFS Security” on page 5-14.
Each namespace can have one proxy user. The proxy-user credentials must be valid in
the same Windows domain as the namespace. Multiple namespaces in the same
domain can use the same proxy user. From gbl-ns mode, use the
proxy-user command
to apply a proxy user to the namespace:
proxy-user name
where name (1-32 characters) identifies the proxy user for this namespace. Use
the
show proxy-user command for a list of configured proxy users.
For example, this command set applies a proxy user, “acoProxy2,” to the “medarcv”
namespace:
bstnA6k(gbl)# namespace medarcv
bstnA6k(gbl-ns[medarcv])# show proxy-user
Name Domain User
------------------------------------------------------------------------------
acoProxy1 WWMEDNET jqprivate