1. Manuals
  2. Brands
  3. Novell Manuals
  4. Software
  5. OPEN ENTERPRISE SERVER 2 SP2 -...
  6. Manual

Novell OPEN ENTERPRISE SERVER 2 SP2 - ADMINISTRATION Manual

Cifs for linux administration guide
Hide thumbs Also See for OPEN ENTERPRISE SERVER 2 SP2 - ADMINISTRATION:
Table of Contents

Advertisement

Quick Links

Download this manual See also: Installation Manual
AUTHORIZED DOCUMENTATION
Novell CIFS for Linux Administration Guide
Novell
®
Open Enterprise Server
2 SP2
November, 2009
www.novell.com
OES 2 SP2: Novell CIFS for Linux Administration Guide

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the OPEN ENTERPRISE SERVER 2 SP2 - ADMINISTRATION and is the answer not in the manual?

Questions and answers

Related Manuals for Novell OPEN ENTERPRISE SERVER 2 SP2 - ADMINISTRATION

Summary of Contents for Novell OPEN ENTERPRISE SERVER 2 SP2 - ADMINISTRATION

  • Page 1 AUTHORIZED DOCUMENTATION Novell CIFS for Linux Administration Guide Novell ® Open Enterprise Server 2 SP2 November, 2009 www.novell.com OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 2: Legal Notices

    Further, Novell, Inc., reserves the right to make changes to any and all parts of Novell software, at any time, without any obligation to notify any person or entity of such changes.
  • Page 3 Novell Trademarks For Novell trademarks, see the Novell Trademark and Service Mark list (http://www.novell.com/company/legal/ trademarks/tmlist.html). Third-Party Materials All third-party trademarks are the property of their respective owners.
  • Page 4 OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 5: Table Of Contents

    Advantages of Novell CIFS ........
  • Page 6 What’s Next ............. . . 53 8 Configuring CIFS with Novell Cluster Services for an NSS File System Benefits of Configuring CIFS for High Availability .
  • Page 7 10.2 CIFS Log In Issues............68 10.2.1 CIFS does not log in and throws “Password has expired”...
  • Page 8 OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 9: About This Guide

    Chapter 6, “Migrating CIFS from NetWare to OES 2 SP2 Linux,” on page 51 Chapter 7, “Running CIFS in a Virtualized Environment,” on page 53 Chapter 8, “Configuring CIFS with Novell Cluster Services for an NSS File System,” on page 55 Chapter 9, “Working with Client Computers,”...
  • Page 10 ® A trademark symbol ( , etc.) denotes a Novell trademark. An asterisk (*) denotes a third-party trademark. When a single pathname can be written with a backslash for some platforms or a forward slash for other platforms, the pathname is presented with a backslash. Users of platforms that require a forward slash, such as UNIX , should use forward slashes as required by your software.

  • Page 11: Overview Of Cifs

    1.1 Understanding CIFS ® Novell CIFS runs on the Open Enterprise Server (OES) 2 SP2 Linux server, uses Novell eDirectory services for user authentication, and allows the Windows and Linux client users to access the server data files or other shared resources in one of the following ways: For Windows, through the Network Neighborhood or My Network, Windows Explorer, and mapped drives from Windows and Windows Vista* workstations.

  • Page 12: Cifs Features And Capabilities

    Support for 1500 concurrent client connections. ® Superior performance similar to NetWare CIFS. Takes advantage of enhanced interoperability services provided by OES 2 Linux server. Enhanced Migration Tool support for NetWare CIFS users. OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 13: Cifs Server

    1.5 CIFS Server Novell CIFS enables Windows and Linux client workstations to create, copy, delete, move, save, and open files on an OES 2 Linux server. CIFS allows read and write access from multiple client systems simultaneously. All these various file operations and sharing of resources on a network are managed from a CIFS server.

  • Page 14: What's Next

    Novell Product Terms: For definitions of Novell product terminology and other glossary terms used in this guide, such as NMAS , NICI, NCP , and others, visit the Novell: Glossary of Terms (http://www.novell.com/company/glossary.html). 1.7 What's Next If you are planning to implement CIFS on your enterprise server, continue with Chapter 3, “Planning and Implementing CIFS,”...
  • Page 15 What’s New The following new features are implemented on Open Enterprise Server (OES) 2 Linux for CIFS: Installation and Configuration through YaST: CIFS is installed and configured through the YaST interface on OES 2 Linux. For details, see Section 4.2, “Installing and Configuring a CIFS Server through YaST,”...
  • Page 16 OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 17: Planning For Cifs

    Section 3.4, “What's Next,” on page 19 3.1 Planning for CIFS ® The key factors to consider for implementing and enabling Novell CIFS on your enterprise servers are: Upgrading from OES 2 Linux to OES 2 SP2 Linux on your enterprise servers. For details on installing CIFS on OES 2 SP2 Linux, see Chapter 4, “Installing and Setting Up CIFS,”...

  • Page 18: Constraints, Limitations, And Issues

    Section 3.3.1, “Co-existence Issues,” on page 18 3.3.1 Co-existence Issues Do not install any of the following service combinations on the same server as Novell CIFS. Although not all of the combinations cause pattern conflict warnings, Novell does not support any of the combinations shown: File Server (SLES 10 - Samba).

  • Page 19: What's Next

    Item Novell CIFS Novell Samba File system NSS is the only file It is recommended (but not required) that you create Samba support system supported shares on NSS data volumes. NSS is fully integrated with for this release. eDirectory for easy management , and using an NSS volume allows you to take advantage of the rich data security model in NSS.
  • Page 20 OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 21: Installing And Setting Up Cifs

    NMAS (Novell Modular Authentication Services). NICI (Novell International Cryptographic Infrastructure). CIFS depends on NMAS for name resolution and authentication of CIFS users. NMAS is dependent on NICI for encryption and decryption services. A problem with any of these products causes CIFS users to be denied access to an OES 2 Linux server.

  • Page 22: Required Rights And Permissions For A Cifs User/Administrator

    Novell iManager 2.7.3 is installed, configured, and running. For more information on iManager installation and administration, see the Novell iManager 2.7.3 Administration Guide. Stop all the running Samba daemons before installing CIFS. Use the following commands: /etc/init.d/smb stop /etc/init.d/nmb stop 4.1.3 Required Rights and Permissions for a CIFS User/...

  • Page 23: Installing And Configuring A Cifs Server Through Yast

    Installing CIFS with the bundle of products during OES 2 SP2 Linux installation. Installing only the Novell CIFS service and its dependencies on an existing OES 2 SP2 Linux server. Before you begin, ensure that you have the required eDirectory admin credentials to proceed, if you are installing CIFS after installing OES 2 SP2 Linux.
  • Page 24 4 Click Accept. The subsequent pages allow the administrator to configure CIFS on OES 2. 5 To change the default configuration settings for CIFS, click on the Novell CIFS service or click Next to continue with the default configuration. NOTE: If you are installing CIFS after installing OES 2 SP2, you are prompted to enter the eDirectory admin password.
  • Page 25 6 Fill in the following fields and click Next: Parameter Description eDirectory server address or host This is the default eDirectory server IP address. Select from name the drop-down list to change to a different server. Use secure channel for configuration By default, this option is selected. This is preferred. LDAP port for CIFS Server The default is 636.
  • Page 26 If you want to delete a CIFS user context, select a context from the available list and click Delete. The CIFS user contexts are stored in /etc/opt/novell/cifs/cifsctxs.conf. 8 Select a Password Policy and click Next. OES 2 SP2: Novell CIFS for Linux Administration Guide...
  • Page 27 The CIFS configuration settings you specified are saved successfully on your OES 2 Linux server. NOTE: Installing Novell CIFS also installs Audit and starts auditd. Installing and Setting Up CIFS...

  • Page 28: Verifying Installation

    5 If you selected CASA storage for storing the CIFS proxy user credentials, run the CASAcli -l command to verify if there is an entry for novell-cifs. If you selected a local file for credential storage, verify the existence of the file .cifspwd.enc...

  • Page 29: Installing The Cifs Imanager Plug-In

    1 Launch iManager from your Web browser. For details, see “Accessing iManager” in the Novell iManager 2.7.3 Administration Guide. 2 Click Configure and go to Plug-In Module Installation > Available Novell Plug-In Modules. For details, see “Novell Plug-in Modules” in the Novell iManager 2.7.3 Administration Guide.
  • Page 30 OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 31: Administering The Cifs Server

    Administering the CIFS Server An administrator can start or stop CIFS and customize network access for CIFS users, enable or disable SMB signing, and perform other configuration and administration activities. CIFS maintains a configuration file and context search information that is set up during installation. To access the CIFS share a CIFS search context is required.

  • Page 32: Selecting A Server To Manage

    3 In the iManager application left frame, click File Protocols > CIFS. The default CIFS parameters page is displayed. Use this page to configure and manage CIFS. 4 In the Server field, specify the OES 2 Linux server name. OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 33: Setting The Cifs Server And Authentication Properties

    Browse and select it from the object selector Use the object history button to select it. 5 Verify the status of the server. If the CIFS server is stopped, click Start to start the CIFS server. The Status changes to Running and all the CIFS properties are displayed on the screen. If a Samba server is running, CIFS does not start.
  • Page 34 A comment associated with the name of the server running CIFS services. This comment is displayed when viewing details. The maximum length is 47 characters. IMPORTANT: You should use single-byte characters in comments. Double-byte characters are not supported. OES 2 SP2: Novell CIFS for Linux Administration Guide...
  • Page 35 Parameter Description OpLocks (Opportunistic Locking) Improves file access performance. The option is disabled by default. Distributed File Services (DFS) This option allows Distributed File Services support in CIFS. The Support option is disabled by default. SMB Signature By default, this is set to Optional. Select Mandatory or Optional or Disabled.
  • Page 36 NOTE: For a virtual server, only CIFS Virtual Server Name, WINS IP Address, and Comment are not inherited from the real server. Hence only these parameters can be edited for CIFS on a shared pool server. OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 37: Managing Cifs Shares

    CIFS Authentication Page Parameters Table 5-2 Parameters Description Mode Indicates the method of authentication used by CIFS. CIFS uses either eDirectory (local) or third-party Domain authentication mechanisms. eDirectory (Local): Clients are members of a workgroup. The server running CIFS services performs the user authentication.
  • Page 38 1 On the default CIFS server page in iManager click the Shares tab, then click New. For information on starting iManager and accessing the CIFS server, see Section 5.1.2, “Selecting a Server to Manage,” on page OES 2 SP2: Novell CIFS for Linux Administration Guide...
  • Page 39 2 Specify the Share Name, Volume, Path, and Comment for the new share. For details, see Table 5-3 on page 3 Click OK to save your changes. On successful addition of a share, the following message is displayed. Editing a CIFS Share Before editing a share, ensure that your CIFS server is started and running.
  • Page 40 1 On the default CIFS server page in iManager click the Share tab, then select one or more shares from the list, then click Remove. On successful deletion of the share the following message is displayed. OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 41: Configuring A Cifs User Context

    2 Either click OK to return to the main page or click Repeat Task to delete more shares. CIFS Share Parameters Use this table information to create and edit CIFS shares. Shares Page Parameters Table 5-3 Parameter Description Name The name that the CIFS share uses for all the CIFS services and for display on Windows computers.
  • Page 42 Add New Context Figure 5-5 2 Browse the Object Selector, select a context to add, then click OK to save. Removing a Context Select one or more contexts and click Remove. OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 43: Using The Command Line To Manage Cifs

    5.1.6 Stopping CIFS To stop a running CIFS server: 1 If the CIFS server status is Running on your screen, click Stop to stop the CIFS server. The Status changes to Stopped and all the CIFS properties are dimmed on the screen. 5.2 Using the Command Line to Manage CIFS Command line utilities are available to control the CIFS services.

  • Page 44: Anonymous Log In For Cifs

    -e [yes/no] Public rights must be set on the volume (or folder) using Novell Client or iManager. WARNING: For security considerations, do not provide supervisor rights to the public objects as it allows access to all the secured folders.

  • Page 45: Working With Cifs Shares

    5.2.6 Working with CIFS Shares CIFS sharepoints can be added, removed, and displayed by using the command line interface or server console. CIFS shares cannot be added to virtual server object using command line (novcifs). If the shares are added on cluster resource using command line, then all the shares are lost if the resource leaves that node.

  • Page 46: Third Party Authentication

    Oplocks: Improves File Access performance and is disabled by default. For more information, see “Using Novell Remote Manager for Linux to Configure Cross-Protocol Locks” in the OES 2 SP2: NCP Server for Linux Administration Guide.

  • Page 47: Limitations

    Enabling DFS Support Figure 5-6 3 Select the check box for Distributed File Services (DFS) Support to enable the DFS support in CIFS Linux. 4 Click OK. 5.5.3 Limitations Junctions in NetWare cannot point to volumes in Linux and vice versa, that is, junctions are not supported across platforms.

  • Page 48: Windows Unable To Resolve The Netbios Name Of The Cifs Server

    DFS to work. This is a Microsoft/CIFS requirement, not a CIFS Linux requirement. NOTE: This problem does not affect Windows clients that use the Novell Client There are multiple ways the client can resolve the CIFS server name: Install the Novell Client on the client machine.

  • Page 49: After Modifying The Junction Target, Accessing The Junction Still Leads To The Old

    NOTE: The string length of the NetBIOS name should not exceed 15 chars. The hostname or the first 13 characters from the hostname, whichever is shorter is considered and appended with _W at the end to frame the standard NetBIOS name. 3 Save and close the file.
  • Page 50 OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 51: Migrating Cifs From Netware To Oes 2 Sp2 Linux

    Linux command line utilities with a GUI wrapper. You can migrate CIFS from a NetWare server to an OES 2 SP2 Linux server either by using the GUI Migration Tool or from the command line. For more information on NetWare CIFS, see the NW6.5 SP8: Novell Cluster Services 1.8.5 Administration Guide.
  • Page 52 OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 53: Running Cifs In A Virtualized Environment

    Running CIFS in a Virtualized Environment ® Novell CIFS runs in a virtualized environment just as it does on a physical NetWare server, or on a physical server running Open Enterprise Server (OES) 2 Linux, and requires no special configuration or other changes.
  • Page 54 OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 55: Configuring Cifs With Novell Cluster Services For An Nss File System

    This section describes how to set up Novell CIFS in a cluster so that Windows and Linux computers can use CIFS to access shared cluster resources on the network even when there is a server failure.

  • Page 56: Cifs And Cluster Services

    Clusters plug-in for Novell Cluster Services. 8.3 CIFS and Cluster Services Novell Cluster Services can be configured either during or after OES 2 SP2 installation. In a cluster, Novell CIFS for OES 2 SP2 Linux, is available only in ACTIVE/PASSIVE mode, which means that CIFS software runs on all nodes in the cluster.

  • Page 57: Using Cifs In A Cluster Environment

    Novell CIFS runs on all nodes in the cluster at any given time. Novell CIFS is started at boot time on each node in the cluster. A CIFS command is added to the load script and unload script for the shared cluster resource. This allows Novell CIFS to provide or not to provide access to the shared resource through Virtual server IP.

  • Page 58: Configuring Cifs In A Cluster

    3 Under Server, specify the cluster object or browse and select it. 4 Click New. 5 Specify the pool name and click Next. 6 Select the shared disk and allocate the pool size with a value of 0, then click Next. OES 2 SP2: Novell CIFS for Linux Administration Guide...
  • Page 59 Using NSSMU to Create the Pool 1 Ensure that the “Prerequisites” on page 58 are met. 2 Start NSSMU from the server console of a cluster server. Configuring CIFS with Novell Cluster Services for an NSS File System...

  • Page 60: Using A Pre-Existing Cluster Pool For Cifs

    For details, see “Configuring Cluster Resources for Shared NSS Pools and Volumes in the OES 2 SP2: Novell Cluster Services 1.8.7 for Linux Administration Guide”. 10 Create sharepoints, provide access rights, and assign password policies for the CIFS virtual server or pool server. Use the same procedure that you used to configure the virtual or pool server CIFS through iManager.

  • Page 61: What's Next

    Chapter 5, “Administering the CIFS Server,” on page For an explanation of how end users access network files from different workstations by using CIFS, Chapter 9, “Working with Client Computers,” on page Configuring CIFS with Novell Cluster Services for an NSS File System...
  • Page 62 OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 63: Working With Client Computers

    Working with Client Computers If CIFS is properly configured, the users on your network can perform the following tasks: Section 9.1, “Configuring Client to Use NTLMv1 Authentication Mode,” on page 63 Section 9.2, “Accessing Files from a Client Computer,” on page 63 Section 9.3, “Mapping Drives and Mounting Volumes,”...

  • Page 64: Accessing Files From A Linux Desktop

    # smbclient //192.168.103.158/V1 -Uari -p 139 session request to 192.168.103.158 failed (Called name not present) session request to 192 failed (Called name not present) Password: (enter password here) OS=[SUSE LINUX 10.1SUSE LINUX 10.1WORKGROUP] Server=[] OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 65: Mapping Drives And Mounting Volumes

    smb: \> Using a NETBIOS Name to Access Files 1 Run this command from the command prompt: smb://<SERVER_NAME>/<VOLUME_NAME> -U<user_name> -p 139 2 Enter the password when prompted. Using nautilus to Access Files 1 Run this command from the command prompt: VOLUME_NAME>...

  • Page 66: Mounting Volumes From A Linux Client

    NOTE: It is not recommended to use smbfs to mount CIFS shares. mount -t cifs For example, mount -t cifs - ousername=<username>,password=<password> // <ip_address>/<share_name> <mount_point> 3 Login to the specific share name in the mounted volume with the required credentials. OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 67: Troubleshooting Cifs

    Troubleshooting CIFS Section 10.1, “CIFS Installation and Configuration Issues,” on page 67 Section 10.2, “CIFS Log In Issues,” on page 68 Section 10.3, “CIFS Loading Issues,” on page 68 Section 10.4, “CIFS Migration Issues,” on page 69 Section 10.5, “Junction Target Changes Require DFSUTIL Command Execution to Clear the Cache,”...

  • Page 68: Cifs Log In Issues

    Cause: eDirectory server might be restarted without restarting CIFS. Action: Restart the CIFS service whenever eDirectory service is restarted. Description: Cluster resource gets into commatos mode when migrating the cluster resource. Error: 22101. An invalid path. OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 69: Cifs Migration Issues

    Cause: eDirectory server might be restarted without restarting CIFS. Action: Restart the CIFS service whenever eDirectory service is restarted. Description: Trustee updation not working in CIFS. Error: Users are unable to access data for which they have access. Cause: eDirectory server might be restarted without restarting CIFS. Action: Restart the CIFS service whenever eDirectory service is restarted.
  • Page 70 2 Disconnect from the mapped drive and clear the cache using the following DFSUTIL commands: DFSUTIL /PKTFLUSH DFSUTIL /SPCFLUSH 3 Map the drive to the new target. OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 71: Security Guidelines For Cifs

    “Enabling and Disabling SMB Signing” on page 11.5 Other Security Considerations OES 2 Linux provides Universal Password security. For details, see “How to Secure Universal Password” in the Novell Password Management Administration Guide (http://www.novell.com/ documentation/password_management32/pwm_administration/data/bwjorxp.html). Security Guidelines for CIFS...
  • Page 72 OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 73: A Novcifs

    NOVCIFS This section describes the command line utilities that work on an Open Enterprise Server (OES) 2 Linux server for running the CIFS services. To access a man page with the command information, enter at the command prompt. man novcifs “novcifs(8)”...
  • Page 74 Enabling or Disabling the Debug Log (for Developers) novcifs [-b yes|no | --enable-debug=yes|no] Enabling or Disabling the Info Log novcifs [-f yes|no |--enable-info=yes|no] Enabling or Disabling SMB Signing novcifs [-g yes|no|optional|force | --enable-smbsigning=yes|no|optional|force] OES 2 SP2: Novell CIFS for Linux Administration Guide...
  • Page 75 Enabling or Disabling Anonymous Log In for CIFS novcifs -e [yes|no] Adding or Removing DNS Names (other than hostnames) for Advertising novcifs --add --dns-name="<DNS_NAME>" --ip-addr=IP_ADDR novcifs --remove --dns-name="<DNS_NAME>" --ip-addr=IP_ADDR Displaying Operational Parameters novcifs [-o | --oper-params] Adding a Virtual Server to the Shared Pool novcifs [-av VIRTUALSERVERFDN -I VIRTUALSERVERIP | --add -- vserver=VIRTUALSERVERFDN --ip-addr=VIRTUALSERVERIP] Removing a Virtual Server from the Shared Pool...
  • Page 76 Enables or disables the debug log. Help Options -h | --help Displays the help information for CIFS commands, syntax, and exits. -u | --usage Displays the usage information for the commands and exits. OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 77: See Also

    /usr/sbin/novcifs is a volume based path. VOL1:dir1 VOL1:/dir1 Authors Copyright 2008, Novell, Inc. All rights reserved. http://www.novell.com. See Also migCifs(8) Report Bugs To report problems with this software or its documentation, visit http://bugzilla.novell.com. NOVCIFS...
  • Page 78 OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 79: B Comparing Cifs On Netware And Cifs On Linux

    ® ® This section compares features and capabilities of Novell CIFS on the NetWare and Linux platforms for Novell Open Enterprise Server 2 SP2 servers. CIFS services on NetWare and OES 2 Linux Table B-1 Service NetWare OES 2 Linux...
  • Page 80 OES 2 SP2: Novell CIFS for Linux Administration Guide...

  • Page 81: C Documentation Updates

    The following note is inlcuded in the Section 4.2, “Installing and Configuring a CIFS Server through YaST,” on page 23 NOTE: Installing Novell CIFS also installs Audit and starts auditd. C.2 November 2009 Front file is updated with date, version, and copyright.

  • Page 82: November 2008

    Section 5.6, “Problems Following DFS Junctions with CIFS in Windows 2000/XP Releases,” on page 47 is added to Chapter 5, “Administering the CIFS Server,” on page C.3 November 2008 All chapters and sections are new additions to OES 2 SP1 release. OES 2 SP2: Novell CIFS for Linux Administration Guide...

Table of Contents