No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

File Access and Protocols Feature Guide 13

OceanStor 18500 V3 and 18800 V3 Mission Critical Storage System V300R003

This document describes the implementation principles and application scenarios of the NAS feature. Also, it explains how to configure and manage NAS.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
(Optional) Configuring the NFSv4 Service to Enable It to Be Used in a Non-Domain Environment

(Optional) Configuring the NFSv4 Service to Enable It to Be Used in a Non-Domain Environment

This section describes how to configure the NFSv4 service to enable it to be used in a non-domain environment.

Background

According to the NFSv4 standard protocol, the NFSv4 service must be used in a domain environment to ensure that the NFSv4 service functions properly. However, if you want to use the NFSv4 service in a non-domain environment, configure the user name@domain name mapping mechanism used by the NFSv4 service on your client. After the configuration is complete, the NFSv4 service will use UIDs and GIDs to transfer information about files during service transactions between your storage system and client.

Risks

  • In scenarios where the NFSv4 service is used in a non-domain environment, the user authentication method of the NFSv4 service is the same as that of the NFSv3 service. The method cannot meet the theoretical security requirements of the NFSv4 standard protocol.
  • Users mapped by each client depend on the configuration files of client users and user groups. Users of each client and the configuration file of each user group must be independently maintained for proper mapping.
  • UIDs and GIDs must be used when ACLs of non-root users and non-root user groups are configured. Otherwise, the configuration will fail.

You are advised not to use the NFSv4 service on a non-domain environment.

Configuration on the Client

  1. Run the echo 1 > /sys/module/nfs/parameters/nfs4_disable_idmapping command.
  2. Run the cat /sys/module/nfs/parameters/nfs4_disable_idmapping command. If Y is displayed in the command output, the configuration is successful.

    If you have used the NFSv4 service to mount NFS shares before configuring the NFSv4 service to enable compatibility between the service and a non-domain environment, mount the NFS shares again after configuring the NFSv4 service.

Translation
Download
Updated: 2019-08-14

Document ID: EDOC1000084098

Views: 30807

Downloads: 72

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next