Manualshelf

Reference Guide

ManualsBrandsDell ManualsCompellent (SCPowerStore 5000X
21222324252627282930
Windows credential for NFS requests
The Windows credential is only built or retrieved when a user through an NFS request attempts to access a file system that has
a Windows access policy. The UID is extracted from the NFS request. There is a global Windows credential cache to help avoid
building the credential on each NFS request with an associated retention time. If the Windows credential is found in this cache,
no other action is required. If the Windows credential is not found, the UDS or local file is queried to find the name for the UID.
The name is then used (optionally, through ntxmap) to find a Windows user, and the credential is retrieved from the Windows
DC or LGDB. If the mapping is not found, the Windows credential of the default Windows user is used instead, or the access is
denied.
Understanding Common AntiVirus Agent (CAVA)
Common AntiVirus Agent (CAVA) provides an antivirus solution to clients using a NAS server. It uses an industry-standard SMB
protocol in a Microsoft Windows Server environment. CAVA uses third-party antivirus software to identify and eliminate known
viruses before they infect files on the storage system.
Why is antivirus important?
The storage system is resistant to the invasion of viruses because of its architecture. The NAS server runs data access in real-
time using an embedded operating system. Third parties are unable to run programs containing viruses on this operating system.
Although the operating system software is resistant to viruses, Windows clients that access the storage system require virus
protection. Virus protection on clients reduces the chance that they will store an infected file on the server, and protects them
if they open an infected file. This antivirus solution consists of a combination of the operating system software, CAVA agent,
and a third-party antivirus engine. The CAVA software and a third-party antivirus engine must be installed on a Windows Server
in the domain.
For additional information about CAVA, which is part of Common Event Enabler (CEE), refer to Using the Common Event
Enabler on Windows Platforms on www.dell.com/powerstoredocs.
Code signing
PowerStore is designed to accept software upgrades for both new releases and patch releases. A master GNU Privacy Guard
(GPG) key signs all PowerStore software packages and Dell EMC controls this GPG key. The PowerStore software upgrade
process verifies the signature of the software package, and rejects invalid signatures that might indicate possible tampering or
corruption. The verification step is built into the upgrade process, and the signature of the software package is automatically
verified during the pre-installation phase.
Authentication and access
25