M08 Cifs

CIFS
Module 8 Data ONTAP 8.0 7-Mode Administration
Module Objectives
By the end of this module, you should be able to: Describe the CIFS environment Configure the storage system to participate in the CIFS environment Share a resource on the storage system Map a drive from a client to the shared resource on the storage system
2009 NetApp. All rights reserved.
CIFS Overview
CIFS Definition
CIFS is a Microsoft network file-sharing protocol that evolved from the Server Message Block (SMB) protocol In a CIFS environment, any application that processes network I/O can access and manipulate files and folders (directories) on remote servers CIFS can be either SMB 1.0 or SMB 2.0 Data ONTAP 8.0 7-Mode currently only supports SMB 1.0 SMB 2.0 support coming in a future release of Data ONTAP 8
User Authentication
In a CIFS environment, the storage system authenticates users in one of four ways:
Active Directory authentication Microsoft Windows NT 4.0 domain authentication Windows workgroup authentication Authentication for non-Windows workgroups
This module focuses only on Active Directory authentication
Storage System Joins a Domain

When a storage system joins a domain: Domain controller adds the storage system to a domain database Becomes a member server
Clients
Member Server
Domain Controller Machine Accounts
Directory
Machine name
Joining a domain
Domain Name to IP Resolution

When a client accesses a storage systems resource:
Requests the browse list from the DC Contacts DNS/WINS server for the IP address Client communicates with storage system What is the Here is storage systems IP storage systems IP? Clients Member Server Domain Controller
DNS/WINS
Machine name
Here is the browse list What machines are available?

User Authentication
User Authentication on a storage system in a domain:
Domain users created on domain controller (DC) User session authentication occurs at the DC Authenticated users must be authorized to access a share and resources
Clients
Member Server
Domain Controller
Machine name
Session with Client-B user
Client-B user requests user session authentication

Authenticates Client-B user
Setting Up and Configuring CIFS
CLI: CIFS Setup

To prepare a storage system to support Windows client users, complete the following steps:
1. License CIFS 2. Perform the initial CIFS configuration by running the cifs setup program or using System Manager
If the setup is successful, the CIFS server starts automatically
System Manager: CIFS Setup
The newly added CIFS license Notice the new categories
System Manager: CIFS Setup (Cont.)
Prior to setting up CIFS, verify DNS
To configure CIFS
CIFS Shares
Creating and Managing Shares

Shares can be created and managed using:
Storage System CLI
Microsoft Tools
Microsoft Management Console Command Line
system> cifs shares add webfinal /vol/vol1/webfinal
Graphical Tools
NetApp System Manager
The cifs shares Command

Display shares:
system> cifs shares [share_name]
Add shares:
system> cifs shares -add <share_name> <path> [-comment description] [-forcegroup name] [-maxusers n] system> cifs shares -change <share_name> <path> [-comment description]
[-forcegroup name] [-maxusers n]
Change shares:
Delete shares:
system> cifs shares -delete <share_name>
The cifs shares Command: Example

system> cifs shares -add pub /vol/vol0/pub -comment new pub system> cifs shares Name Mount Point Description -----------------------ETC$ /etc Remote Administration BUILTIN\Administrators / Full Control HOME /vol/vol0/home Default Share everyone / Full Control C$ / Remote Administration BUILTIN\Administrators / Full Control pub /vol/vol0/pub new pub everyone / Full Control system> cifs shares -delete pub system> cifs shares Name Mount Point Description -----------------------ETC$ /etc Remote Administration BUILTIN\Administrators / Full Control HOME /vol/vol0/home Default Share everyone / Full Control C$ / Remote Administration BUILTIN\Administrators / Full Control
Managing Share Permissions

Share permissions can be managed using:
Storage System CLI system> cifs access eng engineering Full Control
Microsoft Tools
Microsoft Management Console Command Line
Graphical Tools
NetApp System Manager
The cifs access Command

Set share permission:
system> cifs access <sharename> [-g] [user|group] <rights>
Remove share permission:

system> cifs access -delete <sharename> [user|group]
The cifs access Command: Example

system> cifs access eng engineering Full Control system> cifs shares eng Name ---eng Mount Point ----------/vol/vol1/eng EDSVCS\engineering Description ----------Eng Share / Full Control
system> cifs access eng jbrown Read system> cifs shares eng Name ---eng Mount Point Description --------------------/vol/vol1/eng Eng Share EDSVCS\jbrown / Read EDSVCS\engineering / Full Control eng jbrown Description ----------Eng Share / Full Control
system> cifs access delete Name ---eng
Mount Point ----------/vol/vol1/eng EDSVCS\engineering
Client Access
Mapping a Drive to a Share
\\10.254.134.35\C$...
Mapping a Drive to a Share (Cont.)
Terminating Sessions
cifs terminate Host1
Host1
cifs terminate [-t time] [host]
Host2 cifs terminate
Host3
Host4
CLI: Reconfiguring CIFS

Use the cifs terminate command to disconnect users and stop the CIFS service Use the cifs setup command to reconfigure the CIFS service The storage system automatically attempts to restart the CIFS service with the new CIFS configuration
Other CIFS Administration Resources

For more information about CIFS administration, see the Data ONTAP CIFS Administration course This advanced course covers:
Different CIFS user authentication methods:
Workgroup Active Directory Windows NT 4.0 domain Non-Windows workgroup
Advanced configuration Collecting CIFS statistics CIFS performance tuning Troubleshooting CIFS
CIFS Sessions
Displaying CIFS Sessions

You can display the following types of CIFS session information:
A summary of session information Share and file information for one or all connected users Security information for one or all connected users
To obtain session information, use:

CLI NetApp System Manager
CLI: Managing CIFS Sessions

system> cifs sessions Server Registers as ' NetApp1 ' in Windows 2000 domain 'DEVELOPMENT' Filer is using en_US for DOS users Selected domain controller \\DEVDC for authentication ======================================== PC (user) #shares #files system (DEVELOPMENT\administrator - root) 1 0 system> cifs sessions -s users Security Information system (DEVELOPMENT\administrator - root) *************** UNIX uid = 0 user is a member of group daemon (1) user is a member of group daemon (1) NT membership DEVELOPMENT\Administrator DEVELOPMENT\Domain Users DEVELOPMENT\Domain Admins...
System Manager: CIFS Sessions
Module Summary
In this module, you should have learned to: Describe the CIFS environment Configure the storage system to participate in the CIFS environment Share a resource on the storage system Map a drive from a client to the shared resource on the storage system
Exercise
Module 8: CIFS Estimated Time: 45 minutes
Check Your Understanding

What is the purpose of CIFS?
In a CIFS environment, an application that processes network I/O can access and manipulate files on remote servers similar to the way they are accessed locally
What authentication mechanisms are available with the CIFS service?

Windows workgroup, non-Windows workgroup, Active Directory domain, and Windows NT 4.0 domain
What are the steps to set up CIFS?

1. License CIFS 2. Set up the CIFS environment

M08 Cifs

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

M08 Cifs

Uploaded by

Copyright:

Available Formats

CIFS

Module 8 Data ONTAP 8.0 7-Mode Administration

2009 NetApp. All rights reserved.

2009 NetApp. All rights reserved.

2009 NetApp. All rights reserved.

This module focuses only on Active Directory authentication

2009 NetApp. All rights reserved.

Storage System Joins a Domain

Domain Controller Machine Accounts

Domain Name to IP Resolution

Here is the browse list What machines are available?

Session with Client-B user

Client-B user requests user session authentication

Authenticates Client-B user

Setting Up and Configuring CIFS

2009 NetApp. All rights reserved.

CLI: CIFS Setup

If the setup is successful, the CIFS server starts automatically

2009 NetApp. All rights reserved.

System Manager: CIFS Setup

The newly added CIFS license Notice the new categories

2009 NetApp. All rights reserved.

System Manager: CIFS Setup (Cont.)

Prior to setting up CIFS, verify DNS

2009 NetApp. All rights reserved.

System Manager: CIFS Setup (Cont.)

2009 NetApp. All rights reserved.

System Manager: CIFS Setup (Cont.)

2009 NetApp. All rights reserved.

System Manager: CIFS Setup (Cont.)

2009 NetApp. All rights reserved.

System Manager: CIFS Setup (Cont.)

2009 NetApp. All rights reserved.

System Manager: CIFS Setup (Cont.)

2009 NetApp. All rights reserved.

2009 NetApp. All rights reserved.

Creating and Managing Shares

system> cifs shares add webfinal /vol/vol1/webfinal

2009 NetApp. All rights reserved.

The cifs shares Command

2009 NetApp. All rights reserved.

The cifs shares Command: Example

Managing Share Permissions

2009 NetApp. All rights reserved.

The cifs access Command

Remove share permission:

2009 NetApp. All rights reserved.

The cifs access Command: Example

system> cifs access delete Name ---eng

Mount Point ----------/vol/vol1/eng EDSVCS\engineering

2009 NetApp. All rights reserved.

2009 NetApp. All rights reserved.

Mapping a Drive to a Share

2009 NetApp. All rights reserved.

Mapping a Drive to a Share (Cont.)

2009 NetApp. All rights reserved.

cifs terminate [-t time] [host]

Host2 cifs terminate

2009 NetApp. All rights reserved.

CLI: Reconfiguring CIFS

2009 NetApp. All rights reserved.

Other CIFS Administration Resources

2009 NetApp. All rights reserved.