Skip to main content
NetApp Knowledgebase

What is the clustered Data ONTAP comparable setting to the 7G hidden option "cifs.ntfs_ignore_unix_security"

Applies to

Clustered Data ONTAP 8

Answer

What is the clustered Data ONTAP comparable setting to the 7G hidden option 'cifs.ntfs_ignore_unix_security_ops'?

For volumes with the NTFS security style, the UNIX-style permission bits are not used for controlling access to files. However, applications can still access the permission bits via NFS. Attempt to modify the permission bits on such a volume may result in an error being returned to the application, which may cause the application to error out.

Example:

Programs running on Linux 2.6+ distribution, for example vi, may open a swapfile when editing or creating new files and then change the mode bits on the swapfile to 600. When this setattr fails, it displays an error.
E325: ATTENTION
Found a swap file by the name ".new_file.txt.swp"
owned by: gen_user dated: Thu May 1 05:24:48 2008
[cannot be read]
While opening file "new_file.txt" dated: Thu May 1 05:24:48 2008


The cifs.ntfs_ignore_unix_security_ops hidden option can be set to allow the vi operation to work without error in this scenario. In clustered Data ONTAP, the failure behavior can be overridden on either an entire vserver or a single volume. To override this for an entire vserver, set the ntfs-unix-security-ops field to ignore in the vserver nfs settings of the vserver. To override the failure behavior on a single volume, set the ntfs-unix-security-ops to ignore inside the export-policy rule that is exporting the volume.

Additional Information

Related links:

  • BUG 185406 - Require support of the "cifs.ntfs_ignore_unix_security_ops" option
  • BUG 57350 - UNIX clients mounting an ntfs-style qtree complain about being unable to set permissions