- Notes, cautions, and warnings
- Introduction
- Revision history
- Initial configuration and setup
- Performing common tasks
- Displaying system information at a glance
- Managing block storage
- Protection domains
- Fault sets
- Storage data servers
- Storage pools
- Acceleration pools
- Devices
- Volumes
- NVMe targets
- Hosts
- Managing file storage
- Overview of configuring NAS servers
- About file system storage
- File protection
- Create a protection policy
- Create snapshot rules
- Create a snapshot
- Assign a protection policy to a file system
- Unassign a protection policy
- Modify a protection policy
- Delete a protection policy
- Modify a snapshot rule
- Delete a snapshot rule
- Refresh a file system using snapshot
- Restore a file system from a snapshot
- Protecting a block storage environment
- Snapshots
- Create snapshots
- Overwrite volume content from a snapshot
- Set bandwidth and IOPS limits for snapshots
- Lock and unlock snapshots
- Delete snapshots
- Map snapshots
- Unmap snapshots
- Increase the size of a snapshot
- Migrate a snapshot vTree
- Pause snapshot vTree migration
- Roll back snapshot vTree migration
- Set snapshot vTree migration priority
- Snapshot policies
- Remote protection
- Extract and upload certificates
- Journal capacity
- Add a peer system
- Restart the replication cluster
- SDRs
- Replication consistency group
- Replication direction and mapping
- Create an RCG
- Map RCG target volumes to hosts
- Unmap a host from RCG target volumes
- Set the target to inconsistent mode
- Set the target to consistent mode
- Modify RPO
- Add a replication pair to an RCG
- Pause replication for an RCG
- Resume replication for an RCG
- Create a snapshot of an RCG volume
- Add an RCG snapshot policy
- Perform a failover
- Reverse replication
- Restore replication
- Test Failover
- Stop a failover test
- Freeze an RCG
- Unfreeze an RCG
- Activate an RCG
- Terminate replication in an RCG
- Delete an RCG
- Pause creation of an initial copy
- Resume creation of initial copy
- Set copying priority
- Unpair from RCG
- Snapshots
- Performing lifecycle operations for a resource group
- Deploying a resource configuration in a resource group
- Basic tasks
- Deploying a resource group
- Adding an existing resource group
- Updating a resource group with new firmware and software
- Viewing a compliance report
- Entering and exiting service mode
- Replacing a drive
- Replacing NVDIMM node or battery
- Reconfiguring MDM roles
- Migrating vCLS VMs to shared storage
- Adding components to a resource group
- Resize a volume
- Removing resources from a resource group
- Adding NVMe/TCP storage access
- Additional resource group management tasks
- Basic tasks
- Preparing a template for a resource group deployment
- Basic tasks
- Additional template management tasks
- Deploying a resource configuration in a resource group
- Managing resources
- Basic tasks
- Additional resource management tasks
- Monitoring events and alerts
- Configuring system settings
- User management
- Repositories
- Getting started
- Networking
- Events and alerts
- License management
- Security
- Serviceability
- Software upgrade
- PowerFlex Manager user interface reference
- Additional administration activities
- Retrieving logs for the PowerFlex nodes
- Retrieving logs for PowerFlex components
- Retrieving additional PowerFlex logs
- Enabling audit logging
- Managing storage devices using CloudLink
- Understanding NVMe over TCP load balancing
- Managing NAS server configuration
- Migrating to NVMe/TCP on ESXi
Dell PowerFlex 4.5.x Administration Guide
NAS server sharing protocols
You define the NAS server sharing protocols from .
SMB server
This section contains options for configuring a Windows server.
If you are configuring SMB with Kerberos security, you must select to Join to the Active Directory Domain.
If you select to Join to the Active Directory Domain, you must have added a DNS server. You can add a DNS server from the Naming Services card.
If the Windows Server Type is set to Join to the Active Directory Domain, then Enable automatic mapping for unmapped Windows accounts/users must be selected in the User Mapping tab.
NFS server
This section contains options for configuring an NFS, or NFS secure server for Linux or UNIX support.
| Task | Description |
|---|---|
| Extend the Linux or UNIX credential to enable the storage system to obtain more than 16 group GIDs. | Select or clear
Enable extended Unix credentials.
NOTE:With secure NFS, the UNIX credential is always built by the NAS server, so this option does not apply.
|
| Specify a Linux or UNIX credential cache retention period. | In the
Credential cache retention field, enter a time period (in minutes) for which access credentials are retained in the cache. The default value is 15 minutes.
NOTE:This option can lead to better performance, because it reuses the UNIX credential from the cache instead of building it for each request.
|
You can configure Secure NFS when you create or modify a multiprotocol NAS server or one that supports Unix-only shares. Secure NFS provides Kerberos-based user authentication, which can provide network data integrity and network data privacy.
There are two methods for configuring Kerberos for secure NFS:
- Use the Kerberos realm (Windows realm) associated with the SMB domain configured on the NAS server, if any. If you configure secure NFS using this method, SMB support cannot be deleted from the NAS server while secure NFS is enabled and configured to use the Windows realm.
This method of configuring secure NFS requires fewer steps than configuring a custom realm.
- Configure a custom realm to point to any type of Kerberos realm (AD, MIT, Heimdal). If you configure secure NFS using this method, you must upload the keytab file to the NAS server being defined.
FTP
FTP or Secure FTP can only be configured after a NAS server has been created.
Passive mode FTP is not supported.FTP access can be authenticated using the same methods as NFS or SMB. Once authentication is complete, access is the same as SMB or NFS for security and permission purposes. The method of authentication that is used depends on the format of the username:
- If the format is domain@user or domain\user, SMB authentication is used. SMB authentication uses the Windows domain controller.
- For any other single username format, NFS authentication is used. NFS authentication uses local files, LDAP, NIS, or local files with LDAP or NIS. To use local files for NFS, FTP access, the passwd file must include an encrypted password for the users. This password is used for FTP access only. The passwd file uses the same format and syntax as a standard Unix system, so you can leverage this to generate the local passwd file. On a Unix system, use useradd to add a new user and passwd to set the password for that user. Then, copy the hashed password from the /etc/shadow file, add it to the second field in the /etc/passwd file, and upload the /etc/passwd file to the NAS server.
User mapping
If you are configuring a NAS server to support both types of protocols, SMB and NFS, you must configure the user mapping. When configured for both types of protocol, the user mapping requires that the NAS server is joined with an AD domain. You can configure the SMB server with AD from the SMB Server card.
If the Windows Server Type is set to Join to the Active Directory Domain, then you must select Enable automatic mapping for unmapped Windows accounts/users.
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\