|
|
# Using NFSv4
|
|
|
|
|
|
## Important to know
|
|
|
* NFS v4 works with names and not with ID’s
|
|
|
* All names must resolve to ID’s on the NFS server and client
|
|
|
* Group wheel on Isilon server is group root on Ubuntu
|
|
|
* This will result in a nogroup group name for the group root on Ubuntu
|
|
|
* Extra/special permissions are set through access control list (ACL)
|
|
|
* Default Linux permissions will still work
|
|
|
|
|
|
## ACL's explained
|
|
|
* to view ACL's on files and folders use the following command
|
|
|
```
|
|
|
nfs4_getfacl <file or directory location>
|
|
|
```
|
|
|
* An ACL will have the following format
|
|
|
|
|
|
Example 1:
|
|
|
> A::user@researchlumc.nl:rxtncy
|
|
|
* The ‘A’ is known as the Access Control Entry (ACE) type A=allow
|
|
|
* Meaning the user or group is allowed according to the permissions
|
|
|
|
|
|
Example 2:
|
|
|
> A:d:user@researchlumc.nl:rxtncy
|
|
|
* The ‘d’ is called an inheritance flag
|
|
|
|
|
|
|Inheritance Flag|Name|Function|
|
|
|
|----------------|----|--------|
|
|
|
|d|directory-inherit|New dirs will have same ACL|
|
|
|
|f|file-inherit|New files wil have same ACL minus inheritance flag|
|
|
|
|n|No-propogate inherit|New sub dirs same ACL minus inheritance flag|
|
|
|
|i|inherit-only|New files/subdirs wil have this ACE| |
|
|
\ No newline at end of file |