beautypg.com

User name mapping – HP ProLiant ML310 G3 Storage Server User Manual

Page 81

background image

When allowing anonymous access to an NFS Share, the following must be performed by a user with

administrative privileges due to Windows Storage Server 2003 security with anonymous users and the

Everyone group.

1.

Click Remote Desktop. Log on to the storage server.

2.

Click Start >Control Panel > Administrative Tools, and then click Local Security Policy.

3.

In Security Settings, double-click Local Policies, and then click Security Options.

4.

Right-click Network access: Let Everyone permissions apply to anonymous users, and then click

Properties.

5.

To allow permissions applied to the Everyone group to apply to anonymous users, click Enabled.

The default is Disabled.

6.

Restart the NFS server service. From a command prompt, enter net stop nfssvc. Then enter
net start nfssvc

. Notify users before restarting the NFS service.

7.

Assign the Everyone group the appropriate permissions on the NFS Share.

8.

Enable anonymous access to the share.

To enable anonymous access to an NFS share, do the following:

1.

Open Windows Explorer by clicking Start > Run, and entering Explorer.

2.

Navigate to the NFS share.

3.

Right-click the NFS Share, and then click Properties.

4.

Click NFS Sharing.

5.

Select the Allow Anonymous Access checkbox.

6.

Change from the default of -2,-2, if desired.

7.

Click Apply.

8.

Click OK.

Best practices for running Server for NFS

Provide user-level security

Secure files

Secure new drives

Allow users to disconnect before stopping the Server for NFS service

Use naming conventions to identify shares with EUC encoding

Protect configuration files

For further details, see the online help for Microsoft Services for Network File System.

User Name Mapping

The User Name Mapping component provides centralized user mapping services for Server for NFS and

Client for NFS. User Name Mapping lets you create maps between Windows and UNIX user and group

accounts even though the user and group names in both environments may not be identical. User

Name Mapping lets you maintain a single mapping database making it easier to configure account

mapping for multiple computers running MSNFS.
In addition to one-to-one mapping between Windows and UNIX user and group accounts, User Name

Mapping permits one-to-many mapping. This lets you associate multiple Windows accounts with a single

UNIX account. This can be useful, for example, when you do not need to maintain separate UNIX

accounts for individuals and would rather use a few accounts to provide different classes of access

permission.

HP ProLiant ML310 Storage Server

81

This manual is related to the following products:
See also other documents in the category HP Storage: