Home » Adaptec Manuals » Network Storage Servers » Adaptec 5325301638 » Manual Viewer

Adaptec 5325301638 Administration Guide - Page 63

Share-Level Access Permissions, Share Access Behaviors, Security Models, SnapTrees, and Shares

UPC - 753253016389

Add to My Manuals
Save this manual to your list of manuals

Page 63 highlights

Share-Level Access Permissions Security Models, SnapTrees, and Shares In the course of creating a share that points to a volume or to a directory on the root of the volume (aka SnapTree directory), you must assign a security model to the volume or SnapTree directory. Thereafter, security models for these entities are managed on the Security > SnapTrees screens. Share-Level Access Permissions Share access permissions for all client platforms are configured by navigating to the Security > Share Access screen and clicking a share name. When a share is created, the default permission granted to users, groups, and NFS clients is full control. You can restrict selected users and groups to read-only access; and you can specify how the share will be exported to NFS clients. Share-Level Access Permissions and Attributes Read-only Full control R Users can navigate the share directory structure and view files. RW Users can read, write, modify, create, or delete files and folders within the share. Hidden H The share is hidden in Web View to clients accessing the server over the SMB, HTTP, AFP, and FTP (but visible to NFS) protocols. Invalid B Path invalidation is most commonly caused by deleting or renaming the directory to which the share points. To remedy this situation, restore the original path as shown in the Path column of the table or remap the share. Share Access Behaviors Administrators tasked with devising security policies for the Snap Server will find the following share access behaviors of interest: • Share access defaults to full control - The default permission granted to users and groups when they are granted access to the share is full control. You may restrict selected users and groups to read-only access. • Share access permissions are cumulative - A user's effective permissions for a resource are the sum of the permissions that you assign to the individual user account and to all of the groups to which the user belongs. For example, if a user has read-only permission to the share, but is also a member of a group that has been given full-access permission to the share, the user gets full access to the share. Chapter 6 Share and File Access 49

Section	Page
Snap Server Administrator Guide	1
Contents	7
Administrative Overview	15
GuardianOS Specifications	16
New Features in this Release	19
Snap Server Manager	19
Connecting to the Server for the First Time	21
Using the Initial Setup Wizard	22
Configuring an APC-Brand UPS	23
SnapExtensions	24
Add-On Features	25
Finding More Information	26
Network Access to the Server	27
TCP/IP Options	28
Configuring TCP/IP Settings	29
Default Protocol Access Settings	31
Windows SMB Access	31
NFS Access	33
Apple File Protocol Access	34
FTP Access	35
HTTP/HTTPS Access	36
DHCP Server	36
User & Group Management	37
Default User and Group Settings	37
UID and GID Assignments	37
Local Users and Groups	38
Windows Workgroup or Domain	39
NIS Domain	41
Storage Configuration & Expansion	43
Default Storage Configuration	43
RAIDs	44
Volumes	47
Quotas	48
Expansion Arrays	49
The Snap Disk 10	50
The Snap Disk 30SA	50
The Snap Disk 32SA	51
Managing Expansion Array Storage	51
Status Devices	52
iSCSI Disks	55
iSCSI Disk Management and Usage	55
Share and File Access	59
Components and Options	60
SnapTrees & Security Models	61
Creating Shares	62
Share-Level Access Permissions	63
Share Access Behaviors	63
The NFS Warning Message	64
Setting File and Folder Permissions (Windows)	64
Setting File and Directory Access Permissions and Inheritance (Windows)	65
How the GuardianOS and Windows Differ in Processing File-Level Access Permissions	67
Snapshots	69
Snapshot Management and Usage	69
Estimating Snapshot Pool Requirements	71
Adjusting Snapshot Pool Size	71
Accessing Snapshots	72
Coordinating Snapshot and Backup Operations	73
Disaster Recovery	75
Backing Up Server and Volume Settings	75
Backing Up the NetVault for GuardianOS NVDB Directory	77
Recovering the NetVault Database	78
Disaster Recovery Procedural Overview	80
CA eTrust Antivirus Software	83
Antivirus Dependencies	84
Launching the CA eTrust Antivirus GUI	85
The Local Scanner View	86
Scan Job Configuration and Scheduling	87
Defining Scan Jobs	87
Running a Manual Scan Job	88
Scheduling a Scan Job	88
Signature Updates	89
Updating Snap Servers That Have Internet Access	90
Updating a Snap Server That Does Not Have Internet Access	91
Distributing Updates from One Server to Another	91
Verifying Download Events	93
Alert Options	93
The Move Directory	94
Log View	95
Troubleshooting Snap Servers	97
The Meaning of LED Indicators	98
Snap Server 4200/4500/15000 Status & Drive Light Behavior	98
Snap Server 14000 Status & Drive Light Behavior	99
Snap Server18000 Status & Drive Light Behavior	101
Snap Disk 10 Disk Drive and Power Supply Module LEDs	104
Snap Disk 30SA and Snap Disk 32SA Disk Drive & Power/Fan Module Behavior	105
System Reset Options	106
Resetting the Snap Server to Factory Defaults	107
Using Maintenance Modes to Perform System Resets	107
Networking Issues	109
Miscellaneous Issues	113
Phone Home Support	114
Third-Party Backup Applications	117
Preparing to Install a Third-Party Backup Agent	118
Pre-installation Tasks	119
Installing Third-Party Agent Software	120
Installing a CA BrightStor ARCserve or CA Enterprise Agent	120
Installing a VERITAS Backup Exec Agent	121
Installing a VERITAS NetBackup 3.4.1 Client	123
Installing the VERITAS NetBackup 4.5 FP6 Client	124
Installing a Legato NetWorker Client	128
Glossary	131

Match case Limit results 1 per page

Share-Level Access Permissions

Chapter 6

Share and File Access

Security Models, SnapTrees, and Shares

In the course of creating a share that points to a volume or to a directory on the root

of the volume (aka SnapTree directory), you must assign a security model to the

volume or SnapTree directory. Thereafter, security models for these entities are

managed on the

Security > SnapTrees

screens.

Share-Level Access Permissions

Share access permissions for all client platforms are configured by navigating to the

Security > Share Access

screen and clicking a share name. When a share is created,

the default permission granted to users, groups, and NFS clients is full control. You

can restrict selected users and groups to read-only access; and you can specify how

the share will be exported to NFS clients.

Share Access Behaviors

Administrators tasked with devising security policies for the Snap Server will find

the following share access behaviors of interest:

•

Share access defaults to full control —

The default permission granted to users

and groups when they are granted access to the share is full control. You may

restrict selected users and groups to read-only access.

•

Share access permissions are cumulative —

A user's effective permissions for a

resource are the sum of the permissions that you assign to the individual user

account and to all of the groups to which the user belongs. For example, if a user

has read-only permission to the share, but is also a member of a group that has

been given full-access permission to the share, the user gets full access to the