Skip to main content

NetApp wins prestigious Coveo Relevance Pinnacle Award. Learn more!

INSIGHT Japan :2023年 1月25日(水)ANAインターコンチネンタルホテル開催 へ参加・申込を行う

NetApp Knowledge Base

What is the clustered Data ONTAP comparable setting to the 7G hidden option "cifs.ntfs_ignore_unix_security"

Last Updated:

Applies to

Clustered Data ONTAP 8


What is the clustered Data ONTAP comparable setting to the 7G hidden option 'cifs.ntfs_ignore_unix_security_ops'?

For volumes with the NTFS security style, the UNIX-style permission bits are not used for controlling access to files. However, applications can still access the permission bits via NFS. Attempt to modify the permission bits on such a volume may result in an error being returned to the application, which may cause the application to error out.


Programs running on Linux 2.6+ distribution, for example vi, may open a swapfile when editing or creating new files and then change the mode bits on the swapfile to 600. When this setattr fails, it displays an error.
Found a swap file by the name ".new_file.txt.swp"
owned by: gen_user dated: Thu May 1 05:24:48 2008
[cannot be read]
While opening file "new_file.txt" dated: Thu May 1 05:24:48 2008

The cifs.ntfs_ignore_unix_security_ops hidden option can be set to allow the vi operation to work without error in this scenario. In clustered Data ONTAP, the failure behavior can be overridden on either an entire vserver or a single volume. To override this for an entire vserver, set the ntfs-unix-security-ops field to ignore in the vserver nfs settings of the vserver. To override the failure behavior on a single volume, set the ntfs-unix-security-ops to ignore inside the export-policy rule that is exporting the volume.

Additional Information

Related links:

  • BUG 185406 - Require support of the "cifs.ntfs_ignore_unix_security_ops" option
  • BUG 57350 - UNIX clients mounting an ntfs-style qtree complain about being unable to set permissions


Scan to view the article on your device