跳转到主内容

UNIX root 用户无法挂载 NTFS 卷 /qtree ,报告错误: mount.nfs :访问被拒绝

Views:
14
Visibility:
Public
Votes:
0
Category:
clustered-data-ontap-8
Specialty:
nfs
Last Updated:

适用于

  • 产品型号: FAS8040-R6
  • 操作系统: 8.3.1P2 集群模式
  • 类别 2 : NFS

问题

当 NFS 客户端以 root 用户身份尝试挂载导出时,会报告以下权限被拒绝错误:

# mount nfsserver:/v_nfsaccess_test/q_nfsaccess_test /mnt

mount.nfs: access denied by server while mounting nfsserver:/v_nfsaccess_test/q_nfsaccess_test

这是对 NTFS 卷 /qtree 的 NFS 访问,因此必须创建显式用户映射,以便 UNIX 用户可以访问 NTFS 卷。此外,尝试从 UNIX 端访问此 ACL 的用户应从 Windows 端设置适当的 ACL ,以允许访问。

此时, UNIX 用户 "Oracle" 将映射到 Windows 用户 NASLAB-CORP\ORACLE_Windows_user

SVM 名称映射:

::*> vserver name-mapping show -vserver svm1

Vserver     Direction Position   

-------------- --------- -------- 

svm1   unix-win  1     Pattern: oracle

                Replacement: NASLAB-CORP\ORACLE_Windows_user

导出策略允许访问客户端,可按如下所示进行验证:  

::*> check-access -vserver svm1 -volume v_nfsaccess_test -qtree q_nfsaccess_test -client-ip 10.xx.xx.xx -authentication-method sys -protocol nfs3 -access-type read-write

  (vserver export-policy check-access)

                     Policy   Policy     Rule

Path              Policy    Owner    Owner Type  Index Access

----------------------------- ---------- --------- ---------- ------ ----------

/                root_policy

                     svm1_root

                          volume      1 read

/v_nfsaccess_test        root_policy

                     v_nfsaccess_test

                          volume      1read

/v_nfsaccess_test/q_nfsaccess_test

                root_policy

                     q_nfsaccess_test

                          qtree       6 read-write

3 entries were displayed.

此外,在进行数据包跟踪时,挂载成功,但 FSINFO 调用失败,并显示以下错误:

NFS3ERR_ACCES:

438.9431500.00056210.xx.xx.yy10.xx.xx.xx   162 MOUNT AUTH_UNIX,AUTH_NULL      V3 MNT Call (Reply In 44) /v_nfsaccess_test

448.9432930.00014310.xx.xx.xx10.xx.xx.yy   138 MOUNT AUTH_NULL                  V3 MNT Reply (Call In 43)

638.9474380.00059810.xx.xx.yy10.xx.xx.xx   226 NFS     AUTH_UNIX,AUTH_NULL      

V3 FSINFO Call (Reply In 64), FH: 0x4c220357

648.9476590.00022110.xx.xx.xx10.xx.xx.yy   106 NFS     AUTH_NULL NFS3ERR_ACCES

V3 FSINFO Reply

 

CUSTOMER EXCLUSIVE CONTENT

Registered NetApp customers get unlimited access to our dynamic Knowledge Base.

New authoritative content is published and updated each day by our team of experts.

Current Customer or Partner?

Sign In for unlimited access

New to NetApp?

Learn more about our award-winning Support