On your "root" problem: is your NT user by chance a member of BUILTIN\Administrators? If so, you may want to turn off the "wafl.nt_admin_priv_map_to_root" option. (Of course, if you do that you should make sure that you still have an administrative account mapped to "root" that you can use). See http://now.netapp.com/NOW/knowledge/docs/olio/guides/53_troubleshooting/faq. shtml#anchor1392387 (Why is the UNIX owner of files I create set to "root"?)
As to the problems you had using mixed qtrees, feedback on this would be very very valuable. We have found mixed mode to be quite usable, once people understand how to put it to best use.
In general, please let us know when you have problems so we can address them, either in documentation or by changing the functionality.
Mark Muhlestein -- mmm@netapp.com
-----Original Message----- From: johnj.sasso@ps.ge.com [mailto:johnj.sasso@ps.ge.com] Sent: Friday, March 17, 2000 4:48 AM To: Paul.Lupa@motorola.com; toasters@mathworks.com Subject: RE: Problems integrating CIFS and NFS access control
The area that the NT and UNIX users access on the NetApp, is that a MIXED-style qtree (as opposed to an NTFS- or UNIX-style qtree)? I had many problems using MIXED-style qtrees between UNIX and NT, with the behavior being inconsistent and confusing. I ended up using a UNIX-style qtree instead, sacrificing the NT ACLs the NTFS-style qtree offers.
On that note, my login name for both UNIX and NT is identical. However, when I modify and save a file via NT (e.g. through Excel, Word) in a UNIX-style qtree, the file gets saved as root, thereby preventing me from accessing the file via UNIX. Very, very annoying.
--john
-----Original Message----- From: Paul Lupa [mailto:Paul.Lupa@motorola.com] Sent: Friday, March 17, 2000 12:24 AM To: toasters@mathworks.com Subject: Problems integrating CIFS and NFS access control
Hi Folks,
I have a problem with the operation of a NetApp that servers up a share both via CIFS and NFS. The goal of a group that I support was to have a common directory for both the UNIX systems and the NT systems. A user would be able to see all of their files under either UNIX or NT. The problem manifests itself because whatever was last used by the user to set access rights is what sets the security mode for the file or directory. For example, if a user accesses a directory from NT and gives himself and a NT group access to a file, from UNIX only he would have access. If from Unix he set a directory to rwxr-x---, someone in an NT group that he specifically want to grant access to would not have access. Generally speaking whatever was last used (NT or Unix) to set permissions works correctly, and the other one works, but not correctly.
My questions to the group:
1: Is anyone sharing the same directory under CIFS and NFS and found a
workaround or an acceptable way to implement permissions?
2: Has anyone thought about what would be wrong with using UNIX permissions to determine access when using NFS and NT permissions when using CIFS?
Thanks, Paul Lupa