Skip to main content
Effective December 3 - NetApp adopts Microsoft’s Business-to-Customer (B2C) identity management to simplify and provide secure access to NetApp resources. For accounts that did not pre-register (prior to Dec 3) access to your NetApp data may take up to 1 hour as your legacy NSS ID is synchronized to the new B2C identity. To learn more, Read the FAQ and Watch the video.
NetApp Knowledge Base

What is the clustered Data ONTAP comparable setting to the 7G hidden option "cifs.ntfs_ignore_unix_security"

Last Updated:

Applies to

Clustered Data ONTAP 8


What is the clustered Data ONTAP comparable setting to the 7G hidden option 'cifs.ntfs_ignore_unix_security_ops'?

For volumes with the NTFS security style, the UNIX-style permission bits are not used for controlling access to files. However, applications can still access the permission bits via NFS. Attempt to modify the permission bits on such a volume may result in an error being returned to the application, which may cause the application to error out.


Programs running on Linux 2.6+ distribution, for example vi, may open a swapfile when editing or creating new files and then change the mode bits on the swapfile to 600. When this setattr fails, it displays an error.
Found a swap file by the name ".new_file.txt.swp"
owned by: gen_user dated: Thu May 1 05:24:48 2008
[cannot be read]
While opening file "new_file.txt" dated: Thu May 1 05:24:48 2008

The cifs.ntfs_ignore_unix_security_ops hidden option can be set to allow the vi operation to work without error in this scenario. In clustered Data ONTAP, the failure behavior can be overridden on either an entire vserver or a single volume. To override this for an entire vserver, set the ntfs-unix-security-ops field to ignore in the vserver nfs settings of the vserver. To override the failure behavior on a single volume, set the ntfs-unix-security-ops to ignore inside the export-policy rule that is exporting the volume.

Additional Information

Related links:

  • BUG 185406 - Require support of the "cifs.ntfs_ignore_unix_security_ops" option
  • BUG 57350 - UNIX clients mounting an ntfs-style qtree complain about being unable to set permissions