HPE Community
Operating System - HP-UX
1833476 Members
2607 Online
110052 Solutions
New Discussion

Re: NFS access

 
Abhijeet_3
Frequent Advisor

‎06-20-2004 05:26 AM

‎06-20-2004 05:26 AM

NFS access

I need help to restrict nfs mount access to specific users only.

Suppose, I have two hp-ux server ( SRV1 and SRV2 ).

On SRV1 server , I have exported folder /share as rw , and given access to SRV2.
/share -rw,access=SRV2

From SRV2 server I have mounted this /share folder on /mynfs.
mount -F nfs SRV1:/share /mynfs

Suppose I have a user1, user2,..usern on SRV2 server .Now I need to give access /mynfs to user1 and user2 only.

How shall do this configuration.
0 Kudos
Reply
4 REPLIES 4
Sridhar Bhaskarla
Honored Contributor

‎06-20-2004 05:57 AM

‎06-20-2004 05:57 AM

Re: NFS access

Hi,

'exportfs' doesn't have any option to specify individual users (except root). So, if there are directories belonging to usern in that filesystem, then they will be accessable to usern on the NFS client (SRV2) if usern exists on it. Either you have to export only those directories that belong to user1 and user2 or manage the permissions on /share on such that others will not have access to it.

-Sri
You may be disappointed if you fail, but you are doomed if you don't try
0 Kudos
Reply
Ashwani Kashyap
Honored Contributor

‎06-20-2004 02:01 PM

‎06-20-2004 02:01 PM

Re: NFS access

As of yet user management on an nfs share , excpet for root is not possible .
The only way to do is to manage your permissions rule or access rules accordingly on the NFS server prior to exporting it .
0 Kudos
Reply
KapilRaj
Honored Contributor

‎06-20-2004 02:35 PM

‎06-20-2004 02:35 PM

Re: NFS access

The best way is to have passwd file copied across to the second machine. So that the user id's match

Kaps
Nothing is impossible
0 Kudos
Reply
Jan Sladky
Trusted Contributor

‎06-21-2004 09:54 PM

‎06-21-2004 09:54 PM

Re: NFS access

I agree with Kapil, best way is same /etc/passwd.

The worse way is use CIFS/SAMBA package instead of nfs, becasuse it is a little bit difficult and time consumig to install and configure this package and also reliability and performance is less then NFS V3 (I guess it is like NFS V2 ;-).
On SVR1 you have to install samba server and on SVR2 the client and after some configuration steps (smb.conf) on sever side, you will be able to restrict privileges on mounted disk for example on certain group only, simply you can add following into your fstab:
//svr1/share /mynfs smbfs fmask=777,dmask=777,gid=1001,username=xxx,password=yyy,workgroup=zzz 0 0

br Jan
GSM, Intelligent Networks, UNIX
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.