跳转到主内容

访问 Trident 提供的 NFS PV 的 Pod 失败,某些节点上的权限被拒绝

  1. 最后更新
  2. 另存为PDF
Views:
6
Visibility:
Public
Votes:
0
Category:
astra_trident
Specialty:
snapx
Last Updated:

适用场景

  • 适用于 Kubernetes/Openshift 的 Trident
  • 基于 SELinux 的 Redhat Enterprise Linux ( RHEL ) 7.9 或 8.x 节点

问题描述

在将 POD 部署到(大多数情况下)在启用了 SELinux 的情况下运行的新部署的 RHEL 节点时, Pod 会联机并提供 Trident 提供的 ONONTAP -NAS PV ,但在定义的挂载上失败,并显示以下错误:

sh-4.4$ cd
/mnt/pvc-trident-test/
sh-4.4$ touch test
touch: cannot touch 'test': Permission denied

从基于节点的挂载正常访问:

[<USER>@<NODE_NAME> trident_test] # mkdir test_of_directory
[<USER>@<NODE_NAME> trident_test] # touch test-of-directory/touched_file
[<USER>@<NODE_NAME> trident_test] # ls -la test-of-directory
total 8
drwxrwxrwx. 2 1001600000 root 4096 Sep 14 10:35 .
drwxrwxrwx. 3 1001600000 root 4096 Sep 14 10:35 ..
-rw-rw-rw-. 1 1001600000 root    0 Sep 14 10:35 touched_file

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.