Skip to main content
NetApp Knowledge Base

Root user gets access denied to access NTFS volume due to root squash

  1. Last updated
  2. Save as PDF
Views:
516
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
nas
Last Updated:

Applies to

  • ONTAP 9
  • NFSv3

Issue

  • NFSv3 client root user can mount NTFS volume, but gets permission denied in accessing the volume
[root@cliet1 ~]# cd /mnt/ontap_share
-bash: cd: /mnt/ontap_share: Permission denied
  • The root user has proper name mapping configured 
  • The Superuser Security type is set to nonein the export policy rule
::> export-policy rule show -vserver svm1 -clientmatch nfsclient1 -fields vserver,ruleindex,clientmatch,superuser,protocol,policyname,anon
vserver            policyname  ruleindex protocol clientmatch            anon  superuser
------------------ ----------- --------- -------- ------------------------- ----- ---------
svm1                policy1    20         nfs      nfsclient1.ntap.local 65534 none
 
  • Security trace shows access denied on the anonymous user, indicating the root user is squashed to the anonymous user with UID 65534
Node            Index Filter Details             Reason
--------------- ----- -------------------------- ----------------------------------------------------------------
node1           1     Security Style: NTFS and   Access is denied because the UNIX user could not be                       NT ACL                     mapped to a valid NT user while reading the user's access rights                                                  on an object.
                      Protocol: nfs
                      Volume: vol1
                      Share: -
                      Path: /data/
                      Win-User: -
                      UNIX-User: 65534
                      Session-ID: -

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.