Quantcast
Channel: File Services and Storage forum
Viewing all articles
Browse latest Browse all 13565

New files and folders on a Linux client mounting a Windows 2012 Server for NFS share do not inherit Owner and Group when SetGID bit set

$
0
0

Problem statement

When I mount a Windows NFS service file share using UUUA and set the Owner and Group, and set the SetGID bit on the parent folder in a hierarchy. New Files and folders inside and underneath the parent folder do not inherit the Owner and Group permissions of the parent.

I am given to understand from this Microsoft KnowledgeBase article (http://support.microsoft.com/kb/951716/en-gb) the problem is due to the Windows implmentation of NFS Services not supporting the Solaris SystemV or BSD grpid "Semantics"

However the article says the same functionality can acheived by using ACE Inheritance in conjunction with changing the Registry setting for "KeepInheritance" to enable Inheritance propagation of the Permissions by the Windows NFS Services.

1. The Precise location of the "KeepInheritance" DWORD key appears to have "moved" in  Windows Server 2012 from a Services path to a Software path, is this documented somewhere? And after enabling it, (or creating it in the previous location) the feature seems non-functional. Is there a method to file a Bug with Microsoft for this Feature?

2. All of the references on demonstrating how to set an ACE to achieve the same result "currently" either lead to broken links on Microsoft technical websites, or are not explicit they are vague or circumreferential. There are no plain Examples. Can an Example be provided?

3. Is UUUA compatible with the method of setting ACE to acheive this result, or must the Linux client mount be "Mapped" using an Authentication source. And could that be with the new Flat File passwd and group files in c:\windows\system32\drivers\etc and is there an Example available.

Scenario:

Windows Server 2012 Standard

File Server (Role)

+- Server for NFS (Role) << -- installed

General --

Folder path: F:\Shares\raid-6-array

Remote path: fs4:/raid-6-array

Protocol: NFS

Authentication --

No server authentication

+- No server authentication (AUTH_SYS)

++- Enable unmapped user access

+++- Allow unmapped user access by UID/GID

Share Permissions --

Name: linux_nfs_client.host.edu

Permissions: Read/Write

Root Access: Allowed

Encoding: ANSI

NTFS Permissions --

Type: Allow

Principal: BUILTIN\Administrators

Access: Full Control

Applies to: This folder only

Type: Allow

Principal: NT AUTHORITY\SYSTEM

Access: Full Control

Applies to: This folder only



-- John Willis, Facebook: John-Willis, Skype: john.willis7416




Viewing all articles
Browse latest Browse all 13565

Trending Articles



<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>