Line 95: |
Line 95: |
| If you want modify the Group Ownership or user access permissions, these changes has to be done in the Ibay Panel. | | If you want modify the Group Ownership or user access permissions, these changes has to be done in the Ibay Panel. |
| ====Usage==== | | ====Usage==== |
− | * Each IP needs to be allowed if you want write permission. For read only permissions, you can open the share to all defined local network in the server-manager | + | * Each IP needs to be allowed if you want write permissions. For read only permissions, you can open the share to all defined local network in the server-manager |
| * The NFS share works with Ibays whose the system of permissions are Group based and inherited from the ibay panel. Therefore for changing write/read and group permissions you need to do it in the Ibay panel. You have at the top of the NFS panel a description on the state of permissions and the group ownership. | | * The NFS share works with Ibays whose the system of permissions are Group based and inherited from the ibay panel. Therefore for changing write/read and group permissions you need to do it in the Ibay panel. You have at the top of the NFS panel a description on the state of permissions and the group ownership. |
| * NFS works with UID and GID, the user id and group id of the client system are sent in each RPC call, and the permissions these IDs have on the file being accessed are checked on the server. For this to work, the UID and GIDs must be the same on the server and the clients. | | * NFS works with UID and GID, the user id and group id of the client system are sent in each RPC call, and the permissions these IDs have on the file being accessed are checked on the server. For this to work, the UID and GIDs must be the same on the server and the clients. |
| * read permissions : | | * read permissions : |
− | - you can easily allow the share in read permission for the local network and for all defined IP (go to the ibay panel and set the User access to write=group, read=everyone, enabled the share, and allow ip or the local network.) | + | - you can easily allow the share in read permission for the local network and for all defined IP (go to the ibay panel and set the User access to write=group, read=everyone, enabled the share, and allow IP(s) or the local network.) |
| * Write and read permission for group: | | * Write and read permission for group: |
− | - you have to set a group who own the ibay (in the ibay panel) and change the permissions to Write=group, Read=Group <br /> | + | - you have to set a group which owns the ibay (in the ibay panel) and change the permissions to Write=group, Read=Group <br /> |
| | | |
| - All users both in the server and in the clients need to be members of that group with the same GID.<br /> | | - All users both in the server and in the clients need to be members of that group with the same GID.<br /> |
Line 115: |
Line 115: |
| uid=5006(helene) gid=5006(helene) groupes=5006(helene),500(shared),5002(famille) | | uid=5006(helene) gid=5006(helene) groupes=5006(helene),500(shared),5002(famille) |
| | | |
− | -IF the option no_root_squash is set, the root can still write in the ibay, but the issue, is that all root or sudo users of all server allowed to the nfs share can write without controls in the ibay. | + | -IF the option no_root_squash is set, the root and all sudoers of every allowed servers to the nfs share are able to write without controls in the ibay. |
| | | |
| ====UID/GID==== | | ====UID/GID==== |