Permissions And Access Rights On Share Resources; Nfs Cluster-Specific Issues - HP X1000 System User's Manual

Network storage system, swx image version 1.6.0a

Hide thumbs Also See for X1000:

Quickspecs (52 pages)

Maintenance and service manual (198 pages)

Maintenance manual (14 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

Table of Contents

Assign ownership of the file share resources to the resource groups.

Divide ownership of the file share resource between the resource groups, which are in turn

distributed between the virtual servers, for effective load balancing.

Verify that the physical disk resource for this file share is also included in this group.

Verify that the resources are dependent on the virtual servers and physical disk resources

from which the file share was created.

Permissions and access rights on share resources

File Share and NFS Share permissions must be managed using the Failover Cluster Management tool

versus the individual shares on the file system themselves via Windows Explorer. Administering them

through the Failover Cluster Management tool allows the permissions to migrate from one node to

other. In addition, permissions established using Explorer are lost after the share is failed or taken

offline.

NFS cluster-specific issues

For convenience, all suggestions are listed below:

•

Back up user and group mappings.

To avoid loss of complex advanced mappings in the case of a system failure, back up the mappings

whenever the mappings have been edited or new mappings have been added.

•

Map consistently.

Groups that are mapped to each other should contain the same users and the members of the

groups should be properly mapped to each other to ensure proper file access.

•

Map properly.

• Valid UNIX users should be mapped to valid Windows users.

• Valid UNIX groups should be mapped to valid Windows groups.

• Mapped Windows user must have the "Access this computer from the Network privilege" or

the mapping will be squashed.

• The mapped Windows user must have an active password, or the mapping will be squashed.

•

In a clustered deployment, create user name mappings using domain user accounts.

Because the security identifiers of local accounts are recognized only by the local server, other

nodes in the cluster will not be able to resolve those accounts during a failover. Do not create

mappings using local user and group accounts.

•

In a clustered deployment, administer user name mapping on a computer that belongs to a trusted

domain.

If NFS administration tasks are performed on a computer that belongs to a domain that is not

trusted by the domain of the cluster, the changes are not properly replicated among the nodes in

the cluster.

•

In a clustered deployment, if PCNFS password and group files are being used to provide user

and group information, these files must be located on each node of the system.

Example: If the password and group files are located at c:\maps on node 1, then they must also

be at c:\maps on node 2. The contents of the password and group files must be the same on

both nodes as well.

These password and group files on each server node must be updated periodically to maintain

consistency and prevent users or groups from being inadvertently squashed.

100

Cluster administration

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

This manual is also suitable for:

X3000 X1400 X3400 X1500 X1600 X1800 ... Show all

Permissions And Access Rights On Share Resources; Nfs Cluster-Specific Issues - HP X1000 System User's Manual

Permissions and access rights on share resources

NFS cluster-specific issues

Hide quick links:

Related Manuals for HP X1000

Related Content for HP X1000

This manual is also suitable for:

Table of Contents