Hi there,

I was wondering if there's a way to create an nfs share with separate permissions per user?

userro: read only priv.
userrw: read/write priv.

This way when user "userro" mounts that share, he/she can only read but when user userrw will be able to read/write to it.

I have included this in the /etc/exports:
/sharednfs *(rw,no_root_squash,sync)

Can someone please advise?

Thanks!
DB

Change the ownership of the directory its self, off the top of my head. What does the NFS documentation tell you?

Hi James!

I appreciate your response. At any the only option I can think of is to really create each separate users that will be designed for a RW and a RO option then will depend on who you provide these user creden to then set permissions.

Please kindly advise.

Thanks!
DB

How about a 'nfs-rw' group so you don't have to mess about with lots of rules?

Is there nothing in the docs about this then?

I'm not sure which docs you were referring to, i did manual entry on this and didnt really find it.

I am trying to learn how to configure NFS with user permissions and I could not find useful sites and docs.

Please advise.

Thanks.

http://www.google.co.uk/search?clien...utf-8&oe=utf-8

There are plenty of pieces of documentation around, even a few threads on this forum

Ok found some. One of the suggestions was to input the following to /etc/exports:
/sharednfs *(ro,no_subtree_check)
/sharednfs dev34.csaa.com(rw,no_root_squash,sync)

However when I do mount it in ro machine, im only getting some of the files within the nfs share:

total 4
0 drwxr-xr-x 2 root root 0 2009-06-15 16:20 .
4 drwxr-xr-x 6 root root 4096 2009-06-15 16:20 ..
0 --w------- 1 root root 0 2009-06-15 16:20 .add
0 --w------- 1 root root 0 2009-06-15 16:20 .del
0 --w------- 1 root root 0 2009-06-15 16:20 .export
0 -r--r--r-- 1 root root 0 2009-06-15 16:20 exports
0 -rw------- 1 root root 0 2009-06-15 16:20 filehandle
0 -rw------- 1 root root 0 2009-06-15 16:20 .getfd
0 -rw------- 1 root root 0 2009-06-15 16:20 .getfs
0 -rw-r--r-- 1 root root 0 2009-06-15 16:20 max
0 -rw------- 1 root root 0 2009-06-15 16:20 nfsv4
0 -rw------- 1 root root 0 2009-06-15 16:20 nfsv4
0 -rw------- 1 root root 0 2009-06-15 16:20 pool
0 -rw-r--r-- 1 root root 0 2009-06-15 16:20 portlist
0 --w------- 1 root root 0 2009-06-15 16:20 .svc
0 -rw------- 1 root root 0 2009-06-15 16:20 mainthreads
0 --w------- 1 root root 0 2009-06-15 16:20 .export
0 -rw------- 1 root root 0 2009-06-15 16:20 subversions


For rw machine, I'm seeing all directories I wanted in full:

4 drwxrwxr-x 8 root root 4096 Jun 11 15:49 .
8 drwxr-xr-x 7 root root 4096 Jun 15 15:59 ..
4 drwxrwxr-x 2 root root 4096 Jun 11 15:43 Vendors
4 drwxrwxr-x 2 root root 4096 Jun 11 15:44 Disclosure
4 drwxrwxr-x 3 root root 4096 Jun 11 15:44 Destination
4 drwxrwxr-x 9 root root 4096 Jun 11 15:48 Distros
4 drwxrwxr-x 2 root root 4096 Jun 11 15:49 Dropoff
4 drwxrwxr-x 30 root root 4096 Jun 11 16:28 XEntOS


Basically I want both of them to see all directories but ro will only have read only rights to the nfs mount.

Any suggestions?

Thanks!

Ok I did change the permissions to nobody (own/grp) and chmod to 777 on the nfs share.
Also added few strokes in /etc/exports: /sharednfs *(rw,all_squash,sync,anonuid=501,anongid=501)
However doing so will grant ALL users mounting this drive r/w access to the share, is this true?

If so, how can I have one user have all RW rights and others only READ access?

Need expert advise please.

I'd appreciate it.

Thanks!
DB

Try reversing that logic. Make the wildcard ro, then put in a specific entry for one user, rw.

Cool, that worked!

Thanks Chrism01!