Manualshelf

User`s manual

ManualsBrandsSans Digital ManualsComputer equipmentELITENAS EN104L+(B)
31323334353637383940
Sans Digital – EN104L+(B) Admin Guide
39
User & Access - Access Control: UNIX
NOTE: Synchronizing EN104L+(B) with NIS does not automatically give NIS users the access to the Logical Volume. All Logical Volumes to
be accessed by NIS users must first be mounted by the host computer.
To add host access
:
1. Select the logical volume that you wish to give host access to from the Select Logical Volume drop-down list.
2. Type in the IP address of the UNIX host.
3. Select the mounting option. When adding each host to the logical volume, there are four levels of access that can be applied to the
host:
Root Squash – Any user logging in as “root” will be assigned a different user ID so that limited privilege of
read/write/delete is assigned to the logged-in user.
All Squash – Any user logging in will be assigned a different user ID so that limited privilege of read/write/delete is
assigned to the logged in user.
Read Only – Any user logging in can have read-only access.
Secure – Secure option limits the user that can mount to NFS file system to super users only (TCP/IP port #1024 and
below). If a third party application exists that allows non-super users to mount to the NFS file system, secure option
should be deselected.
4. Click on Add.
5. By default, Top directory permission is set to rwx/rwx/rwx. To modify, select desired combination of rwx permissions for
owner, group and other, and select Modify. Note: Sticky bit is used to allow only the root or the owner of the file to unlink or
rename the file. When disabled, anyone that has access to the directory can rename or unlink the file.
To delete the host
:
1. Select the IP address from IP Address drop down box
2. Click on Delete.
To exit and return to the home page, click on Cancel.
NOTE:
Selecting Enable NFS Service
under Network Settings enables global NFS access. Disabling this option disables NFS access
completely.
Unless NFS access is added with host IP address for each logical volume, NFS access for that logical volume is disabled. As a result,
drop down box of the NFS access for the logical volume share indicates Disabled as a default.
Unless each IP address is deleted manually, setting to Disabled for the logical volume share does NOT delete IP address(es).
Security Method for NFS Access
:
EN104L+(B) implements standard UNIX security for NFS access. This means that the UNIX host that is added to the logical volume can mount
to the logical volume with assigned access privileges. Any user logging into the host is authenticated by the NIS (Network Information Service)
server or the UNIX host’s own security. After the user is logged into the host, he/she is able to access the logical volume on EN104L+(B) with
read/write/delete or read-only privilege, depending on the access privilege that was assigned to the host. Individual sub-directory created by the
user can be secured by applying 1) owner only, 2) user group that the user belongs to, or 3) everyone to the sub-directory.