NFS permissions Question

Status
Not open for further replies.
J

Juergen Waiblinger

Cadet
Joined
Oct 27, 2015
Messages
3
Hi all,
in our setup we try to use NFS with users out of the AD. Everything works but if a user creates a file it will only have the permissions inherited by the dataset. On a client chown won't work but will work on the Freenas-Server also setfacl won't work from a client side. Perhaps a quite simple question I'm sure we are misisng something either on the server or client side
We are running on FreeNAS-9.3-STABLE-201509282017.

Regards

Juergen
 
J

Juergen Waiblinger

Cadet
Joined
Oct 27, 2015
Messages
3
small update
changing on the dataset mapall to root:wheel lets do a chown from the client. but what we would prefer that a file that is created will have ownership and group from the one creating the file. An yidea if this is possible, with a standard linux NFS-Server never seen this behaviour
 
Alvin

Alvin

Explorer
Joined
Aug 12, 2013
Messages
65
chown is for POSIX permissions (Unix). setfacl is for ACL's (Windows). UNIX permissions are easier to use.
Files will receive the group of the directory above, and not the default group of the user, but should have the user that created them as owner.
Doing a chown from the client will only work if your NFS maproot user is root.

What are the permissions when a client creates a file now, and what are the permissions you would like it to have?
I didn't really try AD yet, but I suppose your client will also have to be authenticated to that AD server in order to know the usernames.
 
J

Juergen Waiblinger

Cadet
Joined
Oct 27, 2015
Messages
3
thanks for your remarks
clients and users will authenticate with AD using centrify on linux so any AD user can login to a linux box with his AD credentials. AD is linked to frrenas and gentent klis wbinfo working as expected. You can chosoe AD users in the permissions of a dataset etc.regarding chown and setfacl this is at least for the time being not an issue as we see the following issue with NFSv3 NFSv4a user is logged in with user abc when he tocuhes a file in the NFS-share it will have owner and group inherited from what is setup in the share settings from Freenas. expectation would be that it reflects user which has created the file.
 
SweetAndLow

SweetAndLow

Sweet'NASty
Joined
Nov 6, 2013
Messages
6,421
What do your mount options look like? The owner of the file is always the person who created it. Why you're seeing it be the owner of the dataset is just a happy accident. Group can either be inherited by parent directory or be the primary group of the user depending on system configuration.
 
Status
Not open for further replies.

Important Announcement for the TrueNAS Community.

The TrueNAS Community has now been moved. This forum will now become READ-ONLY for historical purposes. Please feel free to join us on the new TrueNAS Community Forums.

Related topics on forums.truenas.com for thread: "NFS permissions Question"

Similar threads

T
  • Locked
Dataset Permissions not updating for NFS client
Replies
1
Views
1K
dlavigne
D
R
NFS Directory Listing Missing Files
Replies
0
Views
1K
randomadmin
R
N
  • Locked
NFS Permissions
Replies
1
Views
2K
m0nkey_
m0nkey_
T
  • Locked
NTFS Permissions not correctly inherited
Replies
3
Views
3K
dlavigne
D
G
  • Locked
NFS Share and file permissions
Replies
2
Views
22K
gak
G
Top