Skip to main content

NetApp wins prestigious Coveo Relevance Pinnacle Award. Learn more!

INSIGHT Japan :2023年 1月25日(水)ANAインターコンチネンタルホテル開催 へ参加・申込を行う

NetApp Knowledge Base

Native Fpolicy fails to block cifs delete operations by extension

Views:
165
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
nas
Last Updated:

Applies to

  • ONTAP 9
  • Native FPolicy

Issue

  • Native Fpolicy configured to block "delete" events, but cifs/smb deletes are not being blocked
  • Example of commands used to block "delete" file operations:
fpolicy policy event create -vserver vserver1 -event-name DELETES -volume-operation true -protocol cifs -file-operations delete
fpolicy policy create -vserver vserver1 -policy-name POLICY_DELETES -events DELETES -engine native -is-mandatory true -allow-privileged-access no -is-passthrough-read-enabled false
vserver fpolicy policy scope create -vserver vserver1 -policy-name POLICY_DELETES -volumes-to-include VOL -file-extensions-to-include .extension
vserver fpolicy enable -vserver vserver1 -policy-name POLICY_DELETES -sequence-number <number>

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

Scan to view the article on your device

 

  • Was this article helpful?