HPE Community
Network Attached Storage (NAS) - Enterprise
1833540 Members
2703 Online
110061 Solutions
New Discussion

2003 and NFS

 
Sharon Lewis
Occasional Contributor

‎03-23-2004 09:42 AM

‎03-23-2004 09:42 AM

2003 and NFS

Does anyone know of any successful implementations of NFS Group to Group User mapping on an Active Directory Domain. We have been trying unsuccesfully on NAS2000 with WSS2003, we are now hearing that it may not work they way it is documented. We have tried to test the NFS Authentication Server on a PDC and it still does not work
0 Kudos
11 REPLIES 11
Sudhakar J_1
Advisor

‎03-24-2004 03:41 AM

‎03-24-2004 03:41 AM

Re: 2003 and NFS

Hi,
To use the active directory groups and users you need to install the NFS Authentication component on all of your dc's.

Since you have more than one NAS device i recommend you to designate one of them (or one of the dc's) as user name mapping server

Then on the designated user name mapping server do all the mappings you need and edit the C:\SFU\Mapper\.maphosts (Help is avilable in the same file)

Now point all the NAS/WSS devices to use the designated User Name Mapping server.You can do it to NFS COnsole.
tomorrow is just another day
0 Kudos
Sharon Lewis
Occasional Contributor

‎03-24-2004 04:32 AM

‎03-24-2004 04:32 AM

Re: 2003 and NFS

Thank you for your response. Besides production we have a development and a DR enviroment. We won't want all enviroments especially DR to point to same User Mapping server. If a site were to be unavailable, we need to be able to point to a different user mapping server in our DR enviroment which is located on the same domain.
Can you have multiple user mapping servers in one domain?
0 Kudos
Sudhakar J_1
Advisor

‎03-24-2004 09:37 AM

‎03-24-2004 09:37 AM

Re: 2003 and NFS

Yes you can have multiple User Name Mapping server and use DNS round robin method for load balancing.

Also User Name Mapping is Cluster aware so if you have a cluster server you can achive a good high availability with UNM on Cluster.
tomorrow is just another day
0 Kudos
Sharon Lewis
Occasional Contributor

‎03-24-2004 09:48 AM

‎03-24-2004 09:48 AM

Re: 2003 and NFS


If we have multiple user mappings.
How do we set from the Domain Controller access to multiple user mapping servers. Can you put multiple server names in NFS Server For Authentication with a comma or semi-colon. How would we direct the NFS autheniticatation to development NAS Box for testing new projects. We are not trying to load balance we have different server for development and DR but they share the same domain.
0 Kudos
Sudhakar J_1
Advisor

‎03-24-2004 01:09 PM

‎03-24-2004 01:09 PM

Re: 2003 and NFS

You can have as many User Name Mapping servers as you want, there is no limit for no of UNM's in a single domain.

tomorrow is just another day
0 Kudos
Karthik S S
Honored Contributor

‎03-24-2004 03:44 PM

‎03-24-2004 03:44 PM

Re: 2003 and NFS

Thank you Sudhakar for giving a helping hand to Sharon on my request. These days I have noticed many of the SFU related threads in the forums. One such is,
http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=520349

Hope you will enjoy ..!!

-Karthik S S

(No points for this please ...)
For a list of all the ways technology has failed to improve the quality of life, please press three. - Alice Kahn
0 Kudos
Sharon Lewis
Occasional Contributor

‎03-25-2004 05:56 AM

‎03-25-2004 05:56 AM

Re: 2003 and NFS

Karthik,
I noticed sevral people with the same issues. The manual you posted was SFU 3.5. We are having problems with group to group mapping,the NFS authentication server is on the domain but it did not change the fact that group mapping will not work. We get RPC errors when trying to view files in Exported directories.Do you know of any succesfful implementations of Group to Group mapping using SFU 3.0?
0 Kudos
Sudhakar J_1
Advisor

‎03-26-2004 06:39 PM

‎03-26-2004 06:39 PM

Re: 2003 and NFS

Hi,
If i understand correctly, the way you mean group to group mapping is you have windows group and a unix group and you want to map these and users in that group need to have permissions for the folder based on the group mapping. If this is what you want then it will work.i have seen this.

If you donot map user but only map groups then new files will have owner nobody when u ls -l but the group will be proper with correct permissions.
tomorrow is just another day
0 Kudos
Stefano Costantini_2
Frequent Advisor

‎01-04-2005 10:54 PM

‎01-04-2005 10:54 PM

Re: 2003 and NFS

Hi, i have the same problem with a difference: i have bought a nas2000 and i don't find the product key to install the microsoft services for nfs on my domain controller.

What to do?

Stefano
0 Kudos
Vincent Fleming
Honored Contributor

‎01-05-2005 04:16 AM

‎01-05-2005 04:16 AM

Re: 2003 and NFS

Stephano,

If you need to install NFS services on your DC, then you'll have to buy a license for Windows - the licesing that comes with the NAS2000 is for the NAS2000, not your DC.

Cheers,

Vince
No matter where you go, there you are.
0 Kudos
Monty Phillips
Trusted Contributor

‎01-05-2005 04:52 AM

‎01-05-2005 04:52 AM

Re: 2003 and NFS

We have seen a few cases where you are prompted for a license key when installing the NFS authentication software on your DC.

The SFU 3.0 retail CD is provided with the NAS products to be used for NFS domain authentication only, and cannot be installed
on the NAS server. There is also a new retail version of SFU available online that can also be used for NFS Authentication.

This version is SFU 3.5 and it cannot be installed on the NAS either. SFU 3.5 is a free download. The same NFS Authentication
install instructions for the NAS are used on SFU 3.5 as SFU 3.0.

These instructions are found in the NAS Administration Guide in the Microsoft Services for NFS chapter. SFU 3.5 can be
downloaded from:

http://www.microsoft.com/windows/sfu/downloads/default.asp

- Monty

0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.