Manualshelf

HP ProLiant Storage Server User Guide (440584-003, September 2007)

ManualsBrandsHP ManualsStorageHP ProLiant DL380 G5 3.6TB SAS Storage Server
81828384858687888990
When allowing anonymous access to an NFS Share, the following must be performed by a user with
administrative privileges due to Windows Storage Server 2003 security with anonymous users and the
Everyone group.
1. Click Remote Desktop. Log on to the storage server.
2. Click Start >Control Panel > Administrative Tools, and then click Local Security Policy.
3. In Security Settings, double-click Local Policies, and then click Security Options.
4. Right-click N etwork access: Let Everyone permissions apply to anonymous users, and then click
Properties.
5. To allow permissions applied to the Everyone group to apply to anonymous users, click Enabled.
The default is Disabled.
6. Restart the NFS server service. From a command prompt, enter net stop nfssvc.Thenenter
net start nfssvc. Notify users before restarting the NFS service.
7. Assign the Everyone group the appropriate permissions on the NFS Share.
8. Enable anonymous access to the share.
To enable anonym ous access to an NFS share, do the following:
1. O pen Windows Explorer by clicking Start > Run, and entering Explorer.
2. N avigate to the NFS share.
3. Right-click the NFS Share, and then click Properties.
4. Click NFS Sharing.
5. Select the Allow Anonymous Access checkbox.
6. Change from the default of -2,-2, if desired.
7. Click Apply.
8. Click OK.
Best practices for running Server for NFS
Provide
user-level security.
Secure les.
Secure new drives.
Allow u
sers to disconnect before stopping the Server for NFS service.
Use nam ing conventions to identify shares with EUC encoding.
Protect conguration les.
For further details, see the online help for Microsoft Ser vices for Network File System.
User Name Mapping
The User Nam e Mapping c omponent provides centralized user mapping services for Server for NFS and
Client for NFS. User Name Mapping lets you create maps between Windows and UNIX user and group
accounts even though the user and group names in both environments may not be identical. User
Name Mapping lets you maintain a single mapping database m aking it easier to congure account
mapping for multiple computers running MSNFS.
In addition to one-to-one mapping between Windows and UNIX user and group accounts, User N ame
Mapping permits one-to-many mapping. This lets you associate multiple Windows accounts with a single
UNIX account. This can b e useful, for example, when you do not need to maintain separate UNIX
accounts for individuals and would ra ther use a few accounts to provide different classes of access
permission.
HP ProLiant Storage Server 83