DOC HOME SITE MAP MAN PAGES GNU INFO SEARCH PRINT BOOK
 
Configuring the Network File System (NFS)

Setting export access permissions

An NFS server can specify, for each filesystem exported, which client hosts or netgroups may mount that filesystem and whether each specified client has read-write or read-only permission when accessing that filesystem:


Read-write and read-only permissions are usually granted in combinations; for example, a calendar server may be viewed by many read-only clients, but only a few read-write clients have schedule permissions. The Filesystem Manager allows you to specify permissions to All systems, Selected systems, or None; four combinations are allowed:

Read-only Read-Write
none all
selected none
all none
all selected
When a specific client host is granted permissions, you can also grant ``root-access'' for that host. This means root users on specified client systems retain their root privileges when accessing the remote filesystem, while root users on other systems do not. To grant client permissions, select the desired Read-only and/or Read-write permissions in the (NFS) Add Export Configuration menu of the Filesystem Manager.

To grant permissions to selected systems:

  1. From the Export menu, select NFS, then select Add Export Configuration.

  2. Choose a filesystem to grant permissions for, either by entering its name or by using the Select button to bring up the filesystem selection dialog.

  3. Choose to export the selected filesystem as read-only to All systems, Selected systems, or no systems (None).

    If you choose Selected systems, press Select and:

    Press OK when finished modifying the selected clients.

  4. Choose to export the selected filesystem as read-write to All systems, Selected systems, or no systems (None).

    If you choose Selected systems, press Select and:

    Press OK when finished modifying the selected clients.

  5. Click on OK to save the configuration.


NOTE: If you manually enter a client name, you should enter it as a fully qualified name, for example: nairobi.your_company.COM. If you do not use the fully qualified domain name, the Filesystem Manager attempts to expand the name for you. However, this expansion fails if the same machine name exists in multiple subnets in your domain (such as nairobi.your_company.COM and nairobi.engr.your_company.COM. In this case, you must enter the fully qualified name.

See also:



Next topic: Setting anonymous access permissions
Previous topic: Adding, modifying and removing filesystem export configuration

© 2005 The SCO Group, Inc. All rights reserved.
SCO OpenServer Release 6.0.0 -- 02 June 2005