Hey Randy,

you need to use `registry set` to set them in privileged mode, f.ex:

devastator*> registry walk options.nfs.a

options.nfs.acache.persistence.enabled=on

options.nfs.always.deny.truncate=on

options.nfs.assist.queue.limit=40

options.nfs.authsys.extended_groups_ns.enable=off

options.nfs.authsys.extended_groups_ns.queue_max=80

Use registry set to change these values.

Best,

Alexander Griesser

System-Administrator

ANEXIA Internetdienstleistungs GmbH

Telefon: +43-5-0556-320

Telefax: +43-5-0556-500

E-Mail: ag@anexia.at

Web: http://www.anexia.at

Anschrift Hauptsitz Klagenfurt: Feldkirchnerstraße 140, 9020 Klagenfurt

Geschäftsführer: Alexander Windbichler

Firmenbuch: FN 289918a | Gerichtsstand: Klagenfurt | UID-Nummer: AT U63216601

Von: toasters-bounces@teaparty.net [mailto:toasters-bounces@teaparty.net] Im Auftrag von Rue, Randy
Gesendet: Donnerstag, 27. März 2014 22:02
An: toasters@teaparty.net
Betreff: nfs.authsys.extended_groups_ns.enable?

Hello All,

Trying to work around the 16 group limitation of NFS v3 on our 8.1 vfiler and finding references to a “hidden” option “nfs.authsys.extended_groups_ns.enable” that will effectively disable group lookups via auth_sys/RPC and instead look to the filer’s AD authentication for a user’s group memberships. This is similar in spirit to Isilon’s “mapuid” feature and “regular” NFS’s –manage-gid switch.

But I’ve tried in regular mode, priv set advanced and priv set diag, and I always get “No such option nfs.authsys.extended_groups_ns.enable” if I try to view or change the option.

Am I missing some step to make this hidden double-secret-probationary option available?

Randy