administration guide hp StorageWorks NAS 1000s First Edition (April 2003) Part Number: 338724-001 This guide provides information on performing the administrative tasks necessary to manage the HP StorageWorks NAS 1000s server. Overview information as well as procedural instructions are included in this guide.
© Copyright 2003 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company makes no warranty of any kind with regard to this material, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose. Hewlett-Packard shall not be liable for errors contained herein or for incidental or consequential damages in connection with the furnishing, performance, or use of this material.
contents Contents About this Guide. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11 Overview. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .12 Intended Audience . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .12 Prerequisites . . . . . .
Contents Take a Tour . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .24 Rapid Startup Wizard . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .24 Set Server Appliance Name. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .24 Set Administrator Password . . . . . . . . . . . . . . . .
Contents Restore Defaults . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .48 Volume Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .48 Available Volume . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .48 Size. . . . . . . . . .
Contents Modifying a User Password . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .68 Modifying User Properties . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .68 Managing Local Groups. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .69 Adding a New Group. . . . . . . . . . . . . . . . . . . . . . . .
Contents 6 UNIX File System Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 105 Network File System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .106 Server for NFS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .106 Authenticating User Access . . . . . . . . .
Contents Creating and Managing NetWare Users . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .138 Adding Local NetWare Users . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .138 Enabling Local NetWare User Accounts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .139 Managing NCP Volumes (Shares) . . . . . . . . . . . . . . . . . . . .
Contents 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 NAS data copy install wizard. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Maintenance menu . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Date and Time dialog box . . . . . . . . . . . . . . . . . .
Contents 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 Share Properties dialog box, NFS Sharing tab. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 98 Share Properties dialog box, NetWare Sharing tab . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 99 Local Area Connection Properties page, Install option . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
about this guide About this Guide This administration guide provides information to help you: ■ Plan your storage configuration About this Guide ■ Set up physical storage ■ Set up virtual storage ■ Manage users and groups ■ Manage folders and shares ■ Manage a UNIX® file system ■ Manage a NetWare file system ■ Remotely access the HP StorageWorks NAS 1000s server About this Guide topics include: ■ Overview, page 12 ■ Conventions, page 13 ■ Rack Stability, page 15 ■ Getting Help, page
About this Guide Overview This section covers the following topics: ■ Intended Audience ■ Prerequisites ■ Conventions Intended Audience This book is intended for use by system administrators who are experienced with setting up and managing a network server.
About this Guide Conventions Conventions consist of the following: ■ Document Conventions ■ Text Symbols ■ Equipment Symbols Document Conventions The document conventions included in Table 1 apply in most cases.
About this Guide Any enclosed surface or area of the equipment marked with these symbols indicates the presence of electrical shock hazards. Enclosed area contains no operator serviceable parts. WARNING: To reduce the risk of personal injury from electrical shock hazards, do not open this enclosure. Any RJ-45 receptacle marked with these symbols indicates a network interface connection.
About this Guide Rack Stability Rack stability protects personal and equipment. WARNING: To reduce the risk of personal injury or damage to the equipment, be sure that: ■ The leveling jacks are extended to the floor. ■ The full weight of the rack rests on the leveling jacks. ■ In single rack installations, the stabilizing feet are attached to the rack. ■ In multiple rack installations, the racks are coupled. ■ Only one rack component is extended at any time.
About this Guide HP Storage Website The HP website has the latest information on this product, as well as the latest drivers. Access storage at: http://www.hp.com.. From this website, select the appropriate product or solution. HP Authorized Reseller For the name of your nearest HP authorized reseller: 16 ■ In the United States, call 1-800-345-1518 ■ In Canada, call 1-800-263-5868 ■ Elsewhere, see the HP website for locations and telephone numbers: http://www.hp.com.
System Overview 1 The HP StorageWorks NAS 1000s server can be used in many types of computing environments, from basic Microsoft Windows workgroups to complicated multiprotocol domains using CIFS, NFS, NCP, AppleTalk, FTP, and HTTP. The corresponding varieties of clients that can be serviced include any Windows, UNIX, Linux, Novell, or Macintosh variant.
System Overview Product Definition and Information The NAS 1000s is a business class NAS solution that provides reliable performance, manageability, and fault tolerance. Server Hardware Features The following features are included in the NAS 1000s Model 1 server: ■ Intel Pentium 4 2.
System Overview Optional Features The following features are optional for the NAS 1000s server: ■ Additional memory ■ Network interface cards (NICs) ■ Tape drive ■ SAN Fibre Channel Adapter for tape backup Software Features Advanced features included and supported by the NAS 1000s include: ■ Microsoft Services for Macintosh ■ Microsoft Services for NetWare ■ Microsoft Services for UNIX (SFU) ■ NAS Web Based User Interface (WebUI) ■ StorageWorks Data Copy (Trial Version) ■ Windows Powered
System Overview Product Manageability The NAS 1000s ships with the following utilities and features that ease the administration tasks associated with managing the system: ■ The Rapid Startup Utility is a user friendly configuration utility that ensures easy configuration. ■ The WebUI is a simple, graphical user interface (GUI) that helps with administration tasks.
System Overview Deployment Scenarios The default shipping configuration contains two 10/100/1000 integrated network interface controller (NIC) ports for client data access. These data ports also allow access to the Web user interface (WebUI) that accompanies the product. It is from the WebUI that most management and administrative procedures can be accomplished.
System Overview Environment Scenarios The NAS 1000s is deployed into one of two modes: ■ Workgroup ■ Domain (Windows NT Domain or Active Directory Domain) The NAS 1000s uses standard Windows user and group administration methods in each of these environments. For procedural instructions on managing users and groups, see Chapter 4, User and Group Management, of this guide. Regardless of the deployment, the NAS 1000s integrates easily into multiprotocol environments, supporting a wide variety of clients.
System Overview User Interfaces There are several user interfaces that administrators can use to access and manage the NAS 1000s. Two of these interfaces are: ■ NAS 1000s WebUI ■ NAS 1000s Console Each interface contains the same or similar capabilities, but presents them in a different manner. Each of these interfaces are illustrated in the following sections.
System Overview Network The Network option contains system settings, including system identification, global settings, interfaces settings, administration settings, Telnet settings, and SNMP settings. Disks Use this option to manage disks, volumes, and disk quotas, and snapshots. Users When deployed, the administrator uses this option to manage local users and groups. Local users and groups are discussed in Chapter 4, User and Group Management.
System Overview NAS 1000s Console The NAS 1000s Console can be accessed by: ■ Directly connecting a keyboard and mouse ■ Using the WebUI Maintenance tab and selecting Terminal Services Note: When using Terminal Services to connect to the NAS 1000s Console do not use the window close feature ( ). Click on Start/Log Off Administrator to exit Terminal Services.
System Overview NAS Management Console Click this icon to access the following folders: ■ Core Operating System is used to manage local users and groups, access performance logs and alerts, and manage the event viewer. ■ Disk System contains access to local disk management, including a volume list and a graphical view of the disks. ■ File Sharing contains modules for the configuration of file sharing exports. CIFS (Windows) and NFS (UNIX) file shares are managed through this folder.
Setup Completion and Basic Administrative Procedures 2 This chapter continues the process of setting up the system that was started using the HP StorageWorks NAS 1000s Quick Start Guide by discussing additional setup procedures and options. Basic system administration functions are also included in this chapter. Unless otherwise instructed, all procedures are performed using the NAS Web Based User Interface (WebUI).
Setup Completion and Basic Administrative Procedures Setup Completion After the NAS device is physically set up and the basic configuration is established, additional setup steps must be completed. Depending on the deployment scenario of the NAS device, these steps may vary.
Setup Completion and Basic Administrative Procedures Creating and Managing File Shares Files shares must be set up, granting and controlling file access to users and groups. See Chapter 5, Folder and Share Management for complete information on managing file shares.
Setup Completion and Basic Administrative Procedures Installing and Configuring Data Replication Software Data replication is the process of making a copy of system data. StorageWorks NAS Data Copy is a real time data replication and failover software product that augments existing data protection and tape backup strategies. This product is not intended to replace regular tape backups. Using NAS Data Copy, mission critical data and data that must be protected is marked.
Setup Completion and Basic Administrative Procedures To download and install a free 30-day trial version of Data Copy: go to www.hp.com 1. select storage 2. select network attached storage from the networked storage options. 3. select the NAS 1000s 4. select software and drivers 5. Double-click on the downloaded file, then follow the onscreen instructions.
Setup Completion and Basic Administrative Procedures Basic Administrative Procedures Basic administrative procedures include: ■ Setting the system date and time ■ Shutting down or restarting the server ■ Viewing and maintaining audit logs ■ Using Terminal Services ■ Setting up email alerts ■ Updating the software ■ Changing system network settings These functions are performed in the Maintenance menu of the WebUI.
Setup Completion and Basic Administrative Procedures Setting the System Date and Time To change the system date or time: 1. From the WebUI, select Maintenance and Date/Time. The Date and Time Settings dialog box is displayed. 2. Enter the new values and then click OK. The Maintenance menu is displayed.
Setup Completion and Basic Administrative Procedures Shutting Down or Restarting the Server Caution: Notify users before powering down the system. Both UNIX and Windows NT users can be drastically affected if they are not prepared for a system power-down. 1. From the NAS 1000s WebUI, select Maintenance, Shutdown. Several options are displayed: Restart, Shut Down, and Scheduled Shutdown. Figure 6: Shutdown menu a. To shut down and automatically restart the server, click Restart. b.
Setup Completion and Basic Administrative Procedures Viewing and Maintaining Audit Logs A variety of audit logs are provided on the NAS 1000s. System events are grouped into similar categories, representing the seven different logs. To access the logs from the WebUI, select Maintenance, Logs. The Logs menu is displayed. Figure 7: Logs menu A variety of logs are available and are listed in Figure 7. Each log has viewing, clearing, printing, and saving options.
Setup Completion and Basic Administrative Procedures Using Terminal Services Terminal Services is provided in the WebUI to allow for additional remote system administration and the use of approved third-party applications. Backup software and antivirus programs are examples of approved applications. In addition, Terminal Services is used to access the NAS Management Console of the NAS device. To open a Terminal Services session from the WebUI, select Maintenance, Terminal Services.
Setup Completion and Basic Administrative Procedures Updating the Software To update the software, click on Software Update from the Maintenance menu. The Software Update Wizard will guide you through selecting, verifying, and updating the desired software. Changing System Network Settings Network properties are entered and managed from the Network menu. Most of these settings are entered as part of the Rapid Startup process. Settings made from this menu include adding the NAS 1000s to a domain.
Setup Completion and Basic Administrative Procedures 38 NAS 1000s Administration Guide
Persistent Storage Manager 3 Persistent Storage Manager lets the administrator make replicas, called snapshots, of disks in a matter of seconds. Snapshots enable the creation of multipurpose virtual replicas of production data without having to physically copy the data. They can be used to immediately recover a lost file or directory, to test a new application with realistic data without affecting the "real" data, and to serve as a source of data for backups.
Persistent Storage Manager Reading Snapshots Users who have been granted access by the NAS Administrator see snapshots as network shares. A snapshot is a representation of the NAS volume at the time it was created. During the copy-on-write operation, the data to be overwritten is preserved in the PSM Diff Directory. When reading a snapshot, PSM determines if the data has changed, meaning it is located in the Diff Directory, or if it is on the live volume.
Persistent Storage Manager Other applications for READ/WRITE snapshots: CFOs and auditors can run trial balances to accounting systems without affecting the actual systems. Prototyping, a new version of a program, can be installed in a READ/WRITE snapshot and its compatibility within the system tested with no adverse effects to the primary system. Always Keep ALWAYS KEEP snapshots are treated as untouchable by PSM.
Persistent Storage Manager Note: Defragmentation can not be performed if snapshots exist. To defragment a disk, first delete the snapshots. Drive defragmentation only operates on volumes formatted with a 4 KB or smaller allocation size. HP recommends larger allocation cluster sizes to improve performance. PSM and Backup Because snapshots are quick to create, it is possible to capture a coherent view of the volume data with little or no application downtime.
Persistent Storage Manager For restore: ■ Delete all active snapshots as the restore will cause the cache file to grow. ■ Select only the files representing the data of the volume and not the *.psm files. ■ Be sure to restore to the root of the target volume. ■ Restoration of operating system partitions does not restore the registry hive. System state backups should be utilized in these instances.
Persistent Storage Manager Granule Size Update Utility PSM ships with a utility for adjusting the Granule size of the snapshots. Granules determine the largest cache size that can be managed by PSM. The default setting in the PSM product that ships on the NAS 1000s is 64 K. This setting will allow for up to 1 TB of data to be written to the cache file. In order to gain greater cache file space, the granule size will need to be adjusted.
Persistent Storage Manager ■ When changing to a larger granule for systems, thus allowing for larger cache file sizes and accommodating larger amounts of storage, users should lower their percentage of volume space for the cache file. For example, if the percent is 30 and the supported amount of space in the system is 20 TB, then the cache file limit of 4 TB would get exceeded. Should the limit get exceed, PSM will issue an "Out of Memory" error in the event log and the WebUI status page.
Persistent Storage Manager Persistent Storage Manager Storage Limitations The version of PSM included in the NAS 1000s is currently designed to work with 10 TB of storage with the ability to take 250 snapshots The NAS 1000s is capable of addressing 1TB using the fully populated system and 250 GB Drives. PSM will continue to function with larger systems but the snapshot coverage should only encompass 10 TB worth of storage. There are no safeguards to prevent the use of storage greater than 10 TB.
Persistent Storage Manager Global Settings From the Global Settings screen you can control the overall environmental settings for Persistent Storage Manager. Some options will be disabled if there are already active snapshots. Figure 11: Global settings Maximum Persistent Images This option determines the maximum number of active Persistent Images (snapshots). PSM will support a maximum of 250 snapshots per server. The size of the cache file will determine the actual amount each server can hold.
Persistent Storage Manager Inactive time-out This option specifies how long the server should try to create a snapshot. A snapshot will not begin until a period of relative inactivity set by the Inactive period has passed. If an interval passes that is longer than the Inactive time-out period, the snapshot will not be created and a notice generated to the system event log. Image directory This option specifies the root directory used for the snapshot.
Persistent Storage Manager Size This column displays the size of the volume. Free Space This column displays the available storage size of the volume. Cache Size This column specifies the amount of space allocated to the cache file. Increasing this value will allow more and larger snapshots to be maintained. Usage This column displays the current cache file use as a percentage of the cache size.
Persistent Storage Manager Note: Changing the values for the cache size can result in cache files that exceed the maximum cache file based on the current granule size. If the limit is exceeded "out of memory" notices appear in the event log and the WebUI status page when the first snapshot utilizing that cache file is taken. The snapshot will fail to create but the cache file is built regardless.
Persistent Storage Manager Each scheduled snapshot contains information such as its scheduled time, day, frequency, starting date, and group name. Schedules screen allows you to create new schedules, delete existing schedules, and edit schedule properties. Create a New Schedule Figure 15: Create Persistent Image Schedule To create a new schedule, you must supply a starting time, repeat period, starting day, volume, and the number of snapshots to make available to users.
Persistent Storage Manager Editing Persistent Image Schedule Properties Figure 16: Edit schedule properties To edit persistent image schedule properties: 1. Select Schedules from the PSM Main screen. 2. In the Tasks list, select Properties. 3. Select the changes you want to make to the schedule. 4. Click OK.
Persistent Storage Manager Deleting a Persistent Image Schedule Figure 17: Delete scheduled images To delete a persistent image schedule: 1. Select Schedules from the PSM Main screen. 2. Select the schedule you want to delete. 3. In the Tasks list, select Delete. 4. Click OK.
Persistent Storage Manager Persistent Image and Group Information Figure 18: Persistent Image and Group Information After a snapshot is created from the schedule you specify, it becomes a member of an image group. The Persistent Image and Group Information page can be accessed by selecting the desired snapshot and clicking Details on the Persistent Images to Restore screen.
Persistent Storage Manager Retention weight This field displays the relative retention weight of the image. Most recent image in group This field displays the date and time of the image most recently added to the group. Oldest image in group This field displays the chronologically oldest image in the group. Next image in group to be deleted This field displays the date and time of the image that will be deleted next so the system can stay within the saved images limit.
Persistent Storage Manager 3. Choose one of the following tasks: a. Choose New to create a new snapshot. b. Choose Properties to view or change the image read/write attribute or retention weight. c. Choose Delete to delete the image from the system. d. Choose Undo to undo changes to a read/write image. Creating a New Persistent Image Figure 20: Create new persistent image Snapshots may be created directly through the Persistent Images page.
Persistent Storage Manager Deleting a Persistent Image Figure 21: Delete Verification To delete a persistent image: 1. From the PSM Main screen select Persistent Images. 2. Select the snapshot you want to delete. 3. In the Tasks list, choose Delete. 4. Choose OK.
Persistent Storage Manager Editing Persistent Image Properties Figure 22: Edit Persistent Image Properties You can change properties such as the read-only attribute or preservation weight of an image. To edit persistent image properties: 1. From the PSM Main screen select Persistent Images. 2. In the Tasks list, choose Properties. 3. Select a retention weight from the Retention weight list. 4. Select the Read-only or Read/Write button. 5. Choose OK.
Persistent Storage Manager Undo Persistent Image Changes Figure 23: Undo Image Changes After you create a read/write snapshot, you can make changes to the image, for example, you can modify files in the image, add new files, or delete existing files. If you make a change to an existing image and later want to revert to the original file contents, you can use the following procedure to restore the original snapshot. To undo snapshot changes: 1. From the PSM Main screen select Persistent Images. 2.
Persistent Storage Manager Restoring an Image Figure 24: Images available to restore The Persistent Images to Restore page displays a list of all snapshots. You can choose to view an image or restore your server appliance to an image you have previously created. To restore a snapshot: 1. On the PSM Main screen select Restore Persistent Images. 2. Select the snapshot you want to restore. 3. Choose Restore.
Persistent Storage Manager Figure 25: Restore confirmation screen 4. After selecting Restore the Are you sure screen will appear. 5. Choose OK. Note: PSM will not allow the restoration of the system partition from a snapshot. No error is issued, it simply will not revert the volume. PSM protects the system partition against the revert operation, since it would potentially lead the operating system in an inconsistent state.
Persistent Storage Manager Known Issues These were the known issues at time of publication. Please refer to the release notes for the NAS 1000s for updated information regarding known issues. Event log error at cache full The eventlog error a driver below this one has failed in some way may occur when the cached file is full. Display Error on SAK Status events not rendered properly on SAK.
User and Group Management 4 The HP StorageWorks NAS 1000s supports a variety of file sharing protocols for file access over a network, including: ■ Common Internet File System (CIFS) ■ Network File System (NFS) ■ Novell Core Protocol (NCP) ■ AppleTalk (AFP) Access to shares requires a network logon (username and password). It follows that a fundamental part of managing shares involves managing the users and groups that have access.
User and Group Management Domain Compared to Workgroup Environments NAS 1000s devices can be deployed in workgroup or domain environments. When in a domain environment, the server is a member of the domain. The domain controller is a repository of accounts and account access for the NAS 1000s. Client machines are also members of the domain, and users log on to the domain through their Windows clients.
User and Group Management Managing User Names Usernames should reflect a logical relationship between the username and the person who uses the account. It is important that rules are established to ensure that usernames are: ■ Systematic ■ Easy to follow and implement ■ Easy to remember Using a combination of the user's first name, middle initial, and last name results in systematic usernames for every member of a particular organization.
User and Group Management Workgroup User and Group Management In a workgroup environment, users and groups are managed through the WebUI of the NAS 1000s. Within the Users option, there are two choices: ■ Managing local users ■ Managing local groups User and group administrative tasks include adding, deleting, and modifying user and group information. Managing local users and managing local groups are discussed in the following paragraphs.
User and Group Management Existing user records can be retrieved in one of two ways: ■ By entering the user's User Name or Full Name in the Search fields to retrieve a specific user record. To redisplay the complete user list, space out the Search field. ■ By selecting the user from the list of displayed users in the dialog box. The sort order of the display is controlled by clicking the Name field heading. The names are displayed in alphanumeric order or reverse alphanumeric order.
User and Group Management Modifying a User Password Follow these steps to modify a user password: 1. In the Local Users dialog box, select the user whose password needs to be changed. Then, click Set a Password. The Set Password dialog box is displayed. 2. Enter the password and click OK. The Local Users dialog box is displayed again. Modifying User Properties To modify other user properties: 1. From the Local Users dialog box, select the user whose record needs to be modified. Then, click Properties.
User and Group Management Managing Local Groups Managing groups includes the following tasks: ■ Adding a new group ■ Deleting a group ■ Modifying group properties, including user memberships Local groups in a workgroup environment are managed through the Users option in the WebUI. In the WebUI, under Users, Local Groups is the Local Groups on Server Appliance dialog box. All workgroup group administration tasks are performed in the Local Groups on Server Appliance dialog box.
User and Group Management Adding a New Group To add a group: 1. In the Local Groups dialog box, click New. The Create New Group dialog box is displayed. Figure 30: Create New Group dialog box, General tab 2. Enter the group name and description. 3. To indicate the user members of this group, click Members. See "Modifying Group Properties" for procedural instructions on entering group members. 4. After all group information is entered, click OK.
User and Group Management Modifying Group Properties To modify other group properties: 1. From the Local Groups dialog box, select the desired group and then click Properties. The Properties dialog box is displayed. Figure 31: Group Properties dialog box, General tab Within the Properties dialog box are two tabs: ■ General tab ■ Members tab Each of these tabs is discussed in the following paragraphs. 2. Enter the desired changes in each of the tabs. Then, click OK.
User and Group Management ■ To remove an existing local user from a group, select the desired user from the Members box, and then click the Remove button. ■ To add user or group from a domain to this group, the scroll bar at the right of the screen may need to be used to scroll up the screen display. Enter the user or group name to include in the indicated format (domain/user). Figure 32 is an example of the Members tab.
User and Group Management Quota management tasks are performed from the Disks, Disk Quota selection from the WebUI menu. Figure 33 is an illustration of the disk quota dialog box. Note: If the volume is not formatted with the NTFS file system, or if you are not a member of the administrators group, the Disk Quota option is not displayed (not accessible). Note: For more information about quotas, refer to online help for NAS device quota help.
User and Group Management Enabling and Disabling Quota Management To enable drive quotas: 1. From the WebUI, select Disks, Disk Quota. From the Volumes and Quotas dialog box, select a volume, and then click Quota. The Default Quota dialog box for the specified volume is displayed. Figure 34: Default Quota dialog box 2. To enable quotas on the selected disk, select Enable quota management.
User and Group Management Creating New Quota Entries for a User or Group To create new quotas for a user or group: 1. From the WebUI, select Disks, Disk Quotas. In the Volumes and Quotas dialog box, select a volume and then click Quota Entries. The Quota Entries dialog box is displayed. Figure 35: Quota Entries dialog box 2. All users and groups with established quotas are displayed. To create a new quota for a user or group, click New. The New Quota Entry dialog box is displayed.
User and Group Management Figure 36: New Quota Entry dialog box 3. Indicate the user that the quota is for. For local users and groups, select the desired user from the Select a local user box. For users on the domain, enter the user's domain account name in the indicated box. 4. Enter a disk space limit. 5. Verify the accuracy of the field entries, and then click OK. The Quota Entries dialog box is displayed again. Deleting Quota Entries for a User or Group To delete quotas for a user or group: 1.
User and Group Management Figure 37: Quota Entry dialog box for a user 3. Enter the new disk limit information, and then click OK. The Quota Entries dialog box is displayed again.
User and Group Management 78 NAS 1000s Administration Guide
Folder and Share Management 5 The HP StorageWorks NAS 1000s supports several file sharing protocols, including CIFS, NFS, FTP, HTTP, NCP, and AFP (AppleTalk). This chapter discusses overview information as well as procedural instructions for the setup and management of the file shares for the supported protocols. In addition, discussions on security at the file level and at the share level are included in this chapter.
Folder and Share Management — Managing Shares ■ > Creating a new share > Deleting a share > Modifying share properties > CIFS sharing > NFS sharing > FTP sharing > Web sharing (HTTP) > Netware sharing (NCP) > AFP (AppleTalk) sharing > Installing services for AppleTalk > Installing Windows NT Services for Macintosh Protocol Parameter Settings All procedures in this chapter are documented using the WebUI. In addition to this guide, you may use the WebUI online help.
Folder and Share Management Navigating to a Specific Volume or Folder When you work with volumes and folders, the first task is to gain access to the desired volume or folder. The steps are the same, whether navigating to a volume or a folder: 1. To navigate to a specific volume or folder, from the WebUI, select Shares and then Folders. Initially, the Volumes dialog box is displayed. This initial dialog box displays all system volumes. Figure 38: Volumes dialog box 2.
Folder and Share Management Figure 39: Folders dialog box After accessing the desired folder, the following actions can be performed: ■ Creating a new folder ■ Deleting a folder ■ Modifying folder properties ■ Creating a new share for the volume or folder ■ Managing shares for the volume or folder Creating a New Folder To create a new folder: 1. From the Shares directory, navigate to the Folders menu and then select New. The Create New Folder dialog box is displayed.
Folder and Share Management Figure 40: Create a New Folder dialog box, General tab 3. In the Compress tab, indicate whether and how this folder and its contents are to be compressed. 4. After all information for the new folder is entered, click OK. Deleting a Folder To delete a folder: 1. From the Shares directory, navigate to the folder to delete. Select the folder and then click Delete. The Delete Folder dialog box is displayed. Summary information about the deletion is displayed.
Folder and Share Management Figure 41: Folder Properties dialog box, General tab 2. In the General tab, enter the new information for the folder, which may include: ■ Folder Name ■ Folder Attributes 3. In the Compress tab, indicate whether and how this folder and its contents are to be compressed. 4. After all changes have been completed, click OK. The Folders dialog box is displayed again.
Folder and Share Management Figure 42: Create New Share dialog box, General tab 2. Enter the information for the share, including the name of the share, the allowed protocols, and corresponding permissions. Note: The Share path is the path of the previously selected volume or folder. This field is automatically completed by the system. 3. Select the appropriate tab to enter protocol specific information. See the "Managing Shares"section for detailed information about these entries. 4.
Folder and Share Management To create, delete, and manage shares for a particular volume or folder while in the Folders menu: 1. From the Folders directory, navigate to the target volume or folder and click Manage Shares. The Shared Folders dialog box is displayed. All associated shares for that folder or volume are listed. 2. To create a new share, click New. The Create a New Share dialog box is displayed.
Folder and Share Management Figure 43: Security Properties dialog box for folder name NTSF Test Several options are available in the Security tab dialog box: ■ To add users and groups to the permissions list, click Add. Then follow the dialog box instructions. ■ To remove users and groups from the permissions list, highlight the desired user or group and then click Remove.
Folder and Share Management Figure 44: Access Control Settings dialog box for folder name NTSF Test, Permissions tab To modify specific permissions assigned to a particular user or group for a selected file or folder in the Advanced screen: 1. Select the desired user or group. 2. Click View/Edit. 3. Check all the permissions that you want to enable, and clear the permissions that you want to disable.
Folder and Share Management Other functionality available in the Advanced Access Control Permissions tab is illustrated in Figure 45 and includes: ■ Add a new user or group. Click Add, and then follow the dialog box instructions. ■ Remove a user or group. Click Remove. ■ Inherit permissions from the parent folder. Enable the Allow inheritable permissions from parent to propagate to this object box. ■ Reset permissions.
Folder and Share Management Figure 47: Select User, Computer, or Group dialog box 6. Click OK. Figure 48 illustrates the Auditing Entry screen that is displayed. Figure 48: Auditing Entry dialog box for folder name NTSF Test 7. Select the desired Successful and Failed audits for the user or group as shown in Figure 48. 8. Click OK. Note: Auditing must be enabled to configure this information. Use the local Computer Policy Editor to configure the audit policy on the NAS 1000s.
Folder and Share Management The final tab in the advanced Advanced Access Control Settings security configuration is the Owner tab. This tab allows for taking ownership of files. Typically, administrators use this area to take ownership of files when the file ACL is incomplete or corrupt. By taking ownership, you gain access to the files and then manually apply the appropriate security configurations. Figure 49 illustrates the Owner tab.
Folder and Share Management Share Management There are several ways to set up and manage shares. The WebUI provides screens for setting up and managing shares. Additional methods include using a command line interface, Windows Explorer, or NAS Management Console. This guide demonstrates using the WebUI to set up and manage shares. As previously mentioned, the file sharing security model of the NAS device is based on the NTFS file-level security model.
Folder and Share Management Integrating Local File System Security into Windows Domain Environments ACLs include properties specific to users and groups from a particular workgroup server or domain environment. In a multidomain environment, user and group permissions from several domains can apply to files stored on the same device. Users and groups local to the NAS 1000s can be given access permissions to shares managed by the device.
Folder and Share Management ■ NFS service does not support spaces in the names for NFS file shares. NFS translates any spaces in an export into an underscore character. Additional translations can be set up for files. See the "OEM Supplemental Help" chapter of the SFU help, found on the NAS 1000s. This feature is designed to ensure the greatest level of compatibility with NFS clients, because some do not work with NFS exports that contain a space in the export name.
Folder and Share Management Figure 50: Create a New Share dialog box, General tab 2. Enter the following information: ■ Share name ■ Share path ■ Client protocol types To create a folder for the new share, check the indicated box and the system will create the folder at the same time it creates the share. Protocol specific tabs are available to enter sharing and permissions information for each sharing type. See "Modifying Share Properties" for detailed information on these tabs. 3.
Folder and Share Management Modifying Share Properties To change share settings: 1. From the Shares menu, select the share to modify and then click Properties. The General tab of the Share Properties dialog box is displayed. Figure 51: Share Properties dialog box, General tab The name and path of the selected share is displayed. 2. To enter or change client protocol information, check the appropriate boxes and then click the corresponding tabs.
Folder and Share Management Select one of the following caching policies: ■ Manual Caching for Documents—The default setting. Recommended for folders containing user documents. Users must manually specify any files that they want available when working offline. To ensure proper file sharing, the server version of the file is always open. ■ Automatic Caching for Documents—Also recommended for folders containing user documents.
Folder and Share Management NFS Sharing From the NFS Sharing tab of the Create a New Share dialog box: 1. Indicate the machines that will have access to this share. Select the machine to include in the Select a client or client group box or manually enter the NFS client computer name or IP address. Then click Add. Figure 53: Share Properties dialog box, NFS Sharing tab 2. Indicate whether to allow anonymous access to the NFS share. 3. Indicate the permissions.
Folder and Share Management NetWare Sharing (NCP) Note: NCP shares can be set up only after Microsoft Services for NetWare (SFN) has been installed on the NAS 1000s. Procedures for installing SFN are included in Chapter 7, NetWare File System Management. From the NetWare Sharing tab, as illustrated in Figure 54, of the Create a New Share dialog box: 1. Enter a user limit. 2. Enter Permissions information. The Permissions box lists the currently approved users for this share.
Folder and Share Management AFP (AppleTalk) Sharing AppleTalk shares can be set up only after Service for AppleTalk and Microsoft Windows NT Services for Macintosh have been installed on the NAS 1000s. Installing Services for AppleTalk To install Services for AppleTalk: 1. From the desktop of the NAS 1000s, click Start, navigate to Settings-Network and Dial-up Connections, click Local Area Connection, and then click Properties. 2. Click Install. The Select Network Component Type dialog box is displayed.
Folder and Share Management To set up AppleTalk shares, from the AppleTalk Sharing tab of the Create a New Share dialog box: 1. Enter a user limit. 2. Enter password information. 3. Indicate whether the share has read only permission or read write permission. 4. After all AFP (AppleTalk) Sharing information is entered, either click the next Sharing tab or click OK.
Folder and Share Management 2. Protocols and their statuses are listed. The following options are available: ■ Enabling a protocol ■ Disabling a protocol ■ Modifying Protocol Settings Because enabling and disabling a protocol are self explanatory, only modifying protocol specific settings is described in this section. CIFS Protocol Settings There are no user configurable settings for CIFS. NFS Protocol Settings NFS is the networking protocol for exporting UNIX file systems across a network.
Folder and Share Management AFP (AppleTalk) Protocol Settings Several parameters can be set for AFP shares, including: ■ Welcome message ■ Security settings ■ Limits on number of sessions NAS 1000s Administration Guide 103
Folder and Share Management 104 NAS 1000s Administration Guide
UNIX File System Management 6 Microsoft Services for UNIX (SFU) is a comprehensive software package designed to provide complete UNIX environment integration into a Windows NT, Windows 2000, or Active Directory domain file server. SFU manages tasks on both Windows and UNIX platforms. Tasks include creating NFS exports from Windows and administering user name mappings. SFU also includes Telnet Server and Remote Shell for remote administration.
UNIX File System Management ■ NFS File Sharing Tests ■ Terminal Services, Telnet Service, and Remote Shell Service — Using Terminal Services — Using Telnet Service — Using Remote Shell Service ■ Password Synchronization Network File System Network File System (NFS) is a networking protocol for exporting UNIX file systems across a network. There are two versions of NFS, Version 2 and Version 3. Version 3 supports additional file operations that Version 2 did not have.
UNIX File System Management Authenticating User Access NFS export access is granted or denied to clients based on client name or IP address. The server determines whether a specific client machine has access to an NFS export. No user logon to the NFS server takes place when a file system is exported by the NFS server. Permission to read or write to the export is granted to specific client machines.
UNIX File System Management Note: If a machine other than the localhost is to be used, make sure that the user name mapping service is installed and running on that machine. Figure 57: NAS Management Console Server for NFS screen, User Mapping tab Logging Events Various levels of auditing are available. Auditing sends SFU events to a file for later review and establishes log-setting behavior. Some behavior examples include events logged and log file size. See the online SFU help for more information. 1.
UNIX File System Management Installing NFS Authentication Software on the Domain Controllers and Active Directory Domain Controllers The NFS Authentication software must be installed on all Primary Domain Controllers (PDCs) and backup domain controllers (BDCs) that have Windows users mapped to UNIX users. This includes active directory domains. For instructions on setting up user mappings, see "NFS User and Group Mappings." To install the Authentication software on the domain controllers: 1.
UNIX File System Management NFS File Shares NFS file shares are created in the same manner as other file shares, however there are some unique settings. Procedures for creating and managing NFS file shares are documented in the same sections as creating file shares for other protocols. See the "Folder and Share Management" chapter for more information. Note: NFS specific information is extracted from Chapter 5, Folder and Share Management, and duplicated below.
UNIX File System Management Note: Uncheck the Microsoft Windows (CIFS) option if you do not want to allow CIFS access to the share. Note: NFS service does not support the use of spaces in the names for NFS file shares. NFS translates any spaces in an export into an underscore character. If you plan to use the same name when sharing a folder through CIFS, and then exporting it through NFS, do not put spaces in the CIFS share name.
UNIX File System Management Figure 60: Share Properties dialog box, General tab The name and path of the selected share is displayed. 2. To enter or change client protocol information, check the UNIX (NFS) client type box and then click the NFS Sharing tab.
UNIX File System Management 3. From the NFS Sharing tab of the Share Properties dialog box, a. Indicate the allowed clients. Select the machine to include in the Select a client or client group box or manually enter the NFS client computer name or IP address. Then click Add. b. Indicate whether to allow anonymous access to the NFS share. Note: The default values for Anonymous UID and Anonymous GID are -2. Non-default IDs can be specified for the NFS share using Terminal Services. c.
UNIX File System Management ■ Japanese: SHIFT-JIS ■ Korean: KS C 5601-1987 ■ Simplified Chinese: GB ■ Traditional Chinese: BIG5 NFS Protocol Properties Settings Parameter settings for the NFS protocol are entered and maintained through the WebUI in the NFS Properties dialog box. To access the NFS Properties dialog box, select Shares, Sharing Protocols. Then, select the NFS Protocol radio button and click Properties. The NFS Properties menu is displayed.
UNIX File System Management NFS Async/Sync Settings As mentioned in a previous section, there are two versions of NFS: Version 2 and Version 3. Version 3 supports additional file operations that Version 2 did not have, such as asynchronous file operations. To indicate whether to use asynchronous or synchronous write settings: 1. From the WebUI, access the NFS Protocol Properties menu by selecting Shares, Sharing Protocols. Select NFS Protocol and then click Properties. The NFS Properties menu is displayed.
UNIX File System Management To enter locking parameters: 1. From the WebUI, access the NFS Protocol Properties menu by selecting Shares, Sharing Protocols. Select NFS Protocol and then click Properties. The NFS Properties menu is displayed. 2. In the NFS Properties menu, select Locks. The NFS Locks dialog box is displayed. Figure 64 is an illustration of the NFS Locks dialog box. All clients that have locks on system files are listed in the Current locks box. 3.
UNIX File System Management NFS Client Groups The Client Groups feature gives administrators a method of assigning access permissions to a set of clients. The administrator creates a client group, gives it a name, and then inserts clients into the group by client name or IP address. After the client group is created, the administrator adds or removes permissions for the entire group, instead of allowing or denying access for each individual client machine.
UNIX File System Management Adding a New Client Group To add a new client group: 1. From the NFS Client Groups dialog box, click New. The New NFS Client Group dialog box is displayed. Figure 66: New NFS Client Group dialog box 2. Enter the name of the new group. 3. Enter the client name or their IP address. 4. Click Add. The system adds the client to the displayed list of members. 5. To remove a client from the group, select the client from the Members box and then click Remove. 6.
UNIX File System Management Figure 67: Client Groups dialog box Editing Client Group Information To modify the members of an existing client group: 1. From the NFS Client Groups dialog box, select the group to modify, and click Edit. The Edit NFS Client Group dialog box is displayed. Current members of the group are listed in the Members box. Figure 68: Edit NFS Client Groups dialog box 2. To add a client to the group, enter the client name or IP address in the Client name box, and then click Add.
UNIX File System Management NFS User and Group Mappings When a fileserver exports files within a homogeneous environment, there are no problems with authentication. It is a simple matter of making a direct comparison to determine whether the user should be allowed access to the file, and what level of access to allow. However, when a fileserver works in a heterogeneous environment, some method of translating user access is required.
UNIX File System Management Squashed Mappings If the NFS server does not have a corresponding UID or GID or if the administrator has set other conditions to filter out the user, a process called squashing takes effect. Squashing is the conversion of an unmapped or filtered user to an anonymous user. This anonymous user has very restricted permissions on the system.
UNIX File System Management Example using User1 and Group1: — Make sure that the Windows User1 is mapped to the corresponding UNIX User1. — Make sure that the Windows Group1 is mapped to the corresponding UNIX Group1. — Make sure that User1 is a member of Group1 on both Windows and UNIX. ■ Map properly — Valid UNIX users should be mapped to valid Windows users. — Valid UNIX groups should be mapped to valid Windows groups.
UNIX File System Management Figure 70: User and Group Mappings dialog box, General tab From the General tab of the User and Group Mappings dialog box: 1. If an NIS server is being used: a. Select Use NIS server. b. Enter the NIS domain name. c. Enter the NIS server name. This field is optional. In the Hours and Minutes fields, indicate how often the system will connect to the NIS domain to update the user list. 2. If custom password and group files are being used: a. Select User password and group files.
UNIX File System Management Figure 71: User and Group Mappings dialog box, Simple Mapping tab Explicit User Mapping Explicit mappings allow the administrator to map any user or group manually to any other user and group. Advanced mappings override simple mappings, giving administrators the capability of using simple mapping for most users and then using advanced mappings for the users with unique names on the different systems.
UNIX File System Management Figure 72: User and Group Mappings dialog box, Explicit User Mapping tab To create explicit user mappings: 1. Click the List UNIX Users button to populate the UNIX users box. 2. To map a local Windows user to a UNIX user, highlight the Windows user in the Windows local users box and highlight the UNIX user that you want to map, and then click Add. The Explicitly mapped users box at the bottom of the screen is populated with the new mappings.
UNIX File System Management Figure 73: User and Group Mappings dialog box, Explicit Group Mapping tab To create explicit group mappings: 1. Click the List UNIX Groups button to populate the UNIX Groups box. 2. To map a local Windows group to a UNIX group, highlight the Windows group in the Windows local groups box and highlight the UNIX group to map, and then click Add. The Explicitly mapped groups box at the bottom of the screen is populated with the new mappings.
UNIX File System Management To access the NAS Management Console, use Terminal Services. To open a Terminal Services session, from the WebUI, select Maintenance, Terminal Services. Figure 74: NAS Management Console User Name Mapping screen, Map Maintenance tab Backing up User Mappings 1. Select the Map Maintenance tab from the User Name Mapping screen. 2. Type the path and name of the file to be used for backup in the File path and name field or click Browse to locate the file.
UNIX File System Management NFS File Sharing Tests HP recommends performing the following tests to verify that the setup of the shares, user mappings, and permissions grant the desired access to the NFS shares. 1. Create an NFS share. See "NFS File Shares" earlier in this chapter for information on creating shares. 2. Verify that the NFS share exists. Use Terminal Services to log in to the NAS 1000s and access the command line interface: nfsshare (sharename represents the name of the share.) 3.
UNIX File System Management Terminal Services, Telnet Service, and Remote Shell Service In addition to the WebUI, three services are available for remote administration of Services for UNIX. These services let users connect to machines, log on, and obtain command prompts remotely. See Table 4 for a list of commonly used commands. Using Terminal Services Microsoft Terminal Services can be used to remotely access the NAS 1000s Console.
UNIX File System Management Password Synchronization Password synchronization is an optional service that automatically synchronizes Windows passwords with UNIX passwords across multiple machines or environments. This service is included on the NAS 1000s, but it is not activated. Figure 75: Password Synchronization screen Password synchronization ensures that the machines contain identical and most current user password database.
UNIX File System Management Password Synchronization Requirements For the password synchronization service to function, the work environment must meet the following criteria. ■ The password policies must be the same on Windows NT and UNIX. ■ User and group names must match exactly in spelling. No advanced mapping component exists to correct for any mistakes or differences. ■ The UNIX system must be using CRYPT to encrypt its password database.
UNIX File System Management Figure 76: Password Synchronization screen, Advanced Settings dialog box Installing Password Synchronization on Domain Controllers and Active Directory Domain Controllers The password synchronization service must be installed on all primary domain controllers (PDCs) and backup domain controllers (BDCs) in a domain that will implement the password synchronization service. This includes Active Directory domains. The PDCs contain the primary copy of the user passwords.
UNIX File System Management OemSetup.msi ADDLOCAL=PasswdSync SFUDIR=C:\SFU OEMINSTALL=TRUE SOURCELIST=Z:\ /l*v %temp%\sfusetup.log /q 5. Restart the domain controller. The domain controller must be restarted manually after installing the password synchronization. If the domain controller is not restarted, password synchronization will not run correctly. 6.
UNIX File System Management 134 NAS 1000s Administration Guide
NetWare File System Management 7 File and Print Services for NetWare (FPNW) is one part of the Microsoft software package called Services for NetWare. The most common use of the NetWare network operating system is as a file and print server. Customers using NetWare as the platform to host their file and print services have become accustomed to its interface from both a user and an administrator point of view and have built up an investment in NetWare file and print services.
NetWare File System Management Installing Services for NetWare The installation of FPNW on the NAS 1000s allows for a smooth integration with existing Novell servers. FPNW allows a Windows 2000-based server to emulate a NetWare file and print server to users, clients, and administrators. This emulation allows authentication from Novell clients, the use of Novel logon scripts, the creation of Novell volumes (shares), the use of Novell file attributes, and many other Novell features.
NetWare File System Management Figure 78: Installing File and Print Services for NetWare Managing File and Print Services for NetWare To access FPNW: 1. From the desktop of the NAS 1000s, click Start, Settings, Control Panel, and then double-click FPNW. Figure 79: File and Print Services for NetWare screen 2. Enter an FPNW Server Name and Description. This name must be different from the server name used by Windows or LAN Manager-based clients to refer to the server.
NetWare File System Management 3. Indicate a Home directory root path. This path is relative to where the Sysvol volume has been installed. This will be the root location for the individual home directories. If the directory specified does not already exist, it must first be created. 4. Click Users to: See connected users, disconnect users, send broadcast messages to all users connected to the server, and to send a message to a specific user. 5.
NetWare File System Management Enabling Local NetWare User Accounts 1. In the Users folder (NMC, Core Operating System, Local Users and Groups), right-click an NCP client listed in the right pane of the screen and then click Properties. 2. Select the NetWare Services tab. Figure 81: NetWare Services tab 3. Select Maintain NetWare compatible login. 4. Set other NetWare options for the user and click OK.
NetWare File System Management Managing NCP Volumes (Shares) NCP file shares are created in the same manner as other file shares; however, there are some unique settings. NCP shares can be created and managed through two user interfaces: ■ WebUI ■ NAS Management Console Procedural instructions for using each of these interfaces are included in the following sections.
NetWare File System Management Figure 82: Create a New Share dialog box, General tab 2. In the General tab, enter the share name and path. Check the Novell NetWare client protocol checkbox. To create a folder for the share, check the indicated box and the system will create the folder when it creates the share. 3. Select the NetWare Sharing tab to enter NCP specific information. See "Modifying Share Properties" for information on this tab. 4. After all share information is entered, click OK.
NetWare File System Management Modifying NCP Share Properties To change share settings: 1. From the Shares menu, select the share to modify and then click Properties. The General tab of the Share Properties dialog box is displayed. The name and path of the selected share are displayed. Figure 83: Share Properties dialog box, General tab 2. To enter or change client protocol information, check the Novell NetWare client type box and then click the NetWare Sharing (NCP) tab.
NetWare File System Management Figure 84: Share Properties dialog box, NetWare Sharing tab 3. From the NetWare Sharing tab of the Share Properties dialog box: a. Enter a user limit. b. Enter Permissions information. The Permissions box lists the currently approved users for this share. • To add a new user or group, either select a user or group from the box at the bottom right of the screen or manually enter the user or group name in the Add a user or group box. Then click Add.
NetWare File System Management Creating a New NCP Share using the NAS Management Console To create a new file share: 1. From the NAS 1000s Console, click the NAS Management Console icon, click File Sharing, Shared Folders, and then Shares. 2. Right-click Shares, and then click New File Share. The Create Shared Folder dialog box is displayed. Figure 85: Create Shared Folder dialog box 3. In Folder to Share, type the path of the directory to be shared. 4. In Share Name, type the name of the share.
NetWare File System Management 6. Select the Novell NetWare checkbox and then click Next. The dialog box illustrated in Figure 86 is displayed. Figure 86: NetWare Basic Share Permissions dialog box 7. Select the appropriate permissions level. If a custom permissions level is desired, select the Customize share and folder permissions radio button and then click Custom. The Customize Permissions dialog box is displayed. Figure 87 is an illustration of the Customize Permissions dialog box.
NetWare File System Management Figure 87: Customize Permissions dialog box, Share Permissions tab 8. In the Share Permissions tab, enter choose the appropriate permissions level for each user or group that is configured to have access to that share. 9. To enter file system permissions, select the Security tab. The following dialog box is displayed.
NetWare File System Management Figure 88: Customize Permissions dialog box, Security tab 10. In the Security tab of the Permissions dialog box, enter the file system security properties that apply to the share folder on the server. 11. After the permissions have been entered, click OK to return to the Create Shared Folder screens. Click Finish to create the share. 12. To create additional shares, click Yes at the "Create another shared folder" prompt. Otherwise, click No to exit.
NetWare File System Management NOTES: 1. Permissions can be set on a shared volume regardless of its type of file system. 2. Share permissions are effective only when the share is accessed over the network. 3. The group of permissions you set for the share applies equally to all files and subdirectories in the volume. 4. Permissions on an NTFS share operate in addition to NTFS permissions set on the directory itself. Share permissions specify the maximum access allowed.
Remote Access Methods and Monitoring 8 The HP StorageWorks NAS 1000s comes from the factory with full remote manageability. Several methods of remote access are provided: ■ Web based user interface ■ Terminal services ■ Telnet Server — Enabling Telnet Server — Configuring Telnet Server ■ Remote Shell Daemon These options let administrators use interfaces with which they are already familiar.
Remote Access Methods and Monitoring Web Based User Interface The NAS 1000s includes a Web based user interface (WebUI) for the administrator to remotely manage the machine. Of all of the remote access methods, the WebUI is the most intuitive and easiest to learn and use. The WebUI permits complete system management, including system configuration, user and group management, shares management, UNIX file system management, and storage management. To access the WebUI: 1. Launch a Web browser. 2.
Remote Access Methods and Monitoring Telnet Server Telnet Server is a utility that lets users connect to machines, log on, and obtain a command prompt remotely. Telnet Server is preinstalled on the NAS 1000s, but must be activated before use. Caution: For security reasons, the Telnet Server must be restarted each time the server is restarted.
Remote Access Methods and Monitoring Auditing Information Telnet Server can log various events. The Logging tab allows the administrator to enable logging and select the events that should be logged. Note that errors and significant events are always logged to the Windows event list as well. Server Settings Use the Server Settings tab to change Telnet Server parameters. These parameters determine how the NAS 1000s Telnet Server operates.
Backup Management A This appendix is a backup guide for HP StorageWorks NAS devices. This appendix guides the reader through the process of determining which backup and restore solution is best suited to the NAS device and their business environment. As a source and a destination for departmental, workgroup, and enterprise data, the NAS 1000s becomes an integral part of company computing environments. Therefore, efficient backup and reliable restore capabilities are a priority.
Backup Management Hardware Options Selecting the correct type of device and connection ensures a reliable backup of data that is well suited to the particular computing environment. HP recommends several tape solutions for use with the NAS 1000s. For a full list of qualified tape solutions, refer to the HP website: www.hp.com Additional backup recommendations and information is available in the Backup whitepapers, also available at the HP website.
Backup Management Best Practices After deciding on a backup solution, establish procedures that will enhance the reliability and effectiveness of the backups. The following sections describe general recommendations for performing a backup. Keep company specific needs and environment in mind when implementing these suggestions. Regular and Reliable Backups The NAS 1000s uses RAID 5 for data protection and high availability. The RAID 5 configuration is not user configurable.
Backup Management Backup Schedules An automatic, periodic backup is much more reliable than occasional backups that occur only when someone remembers to execute them. The specific needs of the organization will determine what type of schedule to implement. A weekly or biweekly full backup is the basis of any good backup schedule. Add to that baseline daily incremental or differential backups to capture any daily changes that occur between full backups.
Backup Management ■ Server name ■ IP addresses ■ Gateways ■ DNS servers ■ NIS servers ■ User mapping database ■ Storage setup — Member storage units (LUNs) — Share names, paths, and access permission settings This information greatly increases the ability to quickly and accurately recover from catastrophic failures such as fires, weather disasters, theft, and complete hardware failure.
Backup Management Readiness Testing Completing regular backups is important, but it is only the first step in the backup process. To verify the integrity of those backups, the administrator must conduct periodic testing to confirm the ability to recover files and directories. Regularly testing the recoverability of random files or directories ensures that the backup solution is working as planned.
B PSM Error Codes If you experience a problem using Persistent Storage Manager, the following list of event log messages can be used to troubleshoot. Error codes are logged to the system event log by the file system driver for Persistent Storage Manager, PSMAN5 driver; each entry appears with "psman5" as the source name. Table 5: PSM Error Codes Error Code Description 0x00000001 An invalid IOCTL was sent to the driver.
PSM Error Codes Table 5: PSM Error Codes Error Code 160 Description 0x00000057 An invalid parameter was passed to a function. Action: Programmatically, verify the parameters being passed to PSM are correct. 0x00000079 I/O timed out while reading from the cache file. Action: Verify the hard drive is operational. 0x0000007A Buffer size supplied is insufficient to hold requested information. Action: Save the system eventlog and contact technical support.
PSM Error Codes Table 5: PSM Error Codes Error Code Description 0xC0000005 An Access Exception occurred. Action: Save the system eventlog and contact your vendor's technical support. 0xC0000008 User performing PSM function without opening PSM. Action: Save the system eventlog and contact technical support. 0xC000000D An invalid parameter was passed to a function. Action: Save the system eventlog and contact technical support. 0xC000000E Device name is not recognized by PSM.
PSM Error Codes Table 5: PSM Error Codes Error Code 162 Description 0xC000010A PSM was told to shut down. Action: Save the system eventlog and contact technical support. 0xC0000184 Something has gone wrong with PSM. Action: Save the system eventlog and contact technical support. 0xC0000185 An error occurred on the device. Action: Save the system eventlog and contact technical support. 0xC0000206 Buffer size supplied is insufficient to hold requested information.
PSM Error Codes Table 5: PSM Error Codes Error Code Description 0xE000100F Invalid parameter. Action: Save the system eventlog and contact technical support. 0xE0001010 Invalid handle. Action: Save the system eventlog and contact technical support. 0xE0001011 Not implemented yet. Action: Save the system eventlog and contact technical support. 0xE0001012 Object type is not expected object. Action: Save the system eventlog and contact technical support. 0xE0001013 User buffer is not large enough.
PSM Error Codes Table 5: PSM Error Codes Error Code 164 Description 0xE0001021 The server was shutdown. Action: Do not shut down the machine while snapshots are in progress. 0xE0001022 Unable to create cache file. Action: Save the sysktem eventlog and contact support. 0xE0001023 PSM recovery could not find a snapshot entry. Explanation: A snapshot was lost during the recovery process. It is unknown which snapshot it was. Action: Save the system eventlog and contact technical support.
PSM Error Codes Table 5: PSM Error Codes Error Code Description 0xE0001030 Could not dismount volume before starting snapshot restore. The restore operation was canceled. Action: Save the system eventlog and contact technical support. 0xE0001033 An attempt was made to differentiate volumes of unequal length. Action: Save the system eventlog and contact technical support. 0xE0001034 The volume image backup contains one or more corrupt or missing files.
PSM Error Codes 166 NAS 1000s Administration Guide
index A backup best practices 155 hardware options 154 mappings 126 multiple devices 155 readiness testing 158 schedules 156 snapshots 42, 157 software options 154 solutions 153 C cache changing size 50 clearing from system 45 deleting images 50 full 62 size 49 usage 49 NAS 1000s Administration Guide Index B Index access control list.
Index domain environment 22 drive defragmentation 41 drive quotas defined 72 managing 72 E e-mail alerts, setting up 36 encoding types 113 environments domain compared to workgroup 64 overview 22 equipment symbols 13 error codes 159 events, SFU, logging 108 explicit mapping 124 explicit mappings 120 F features hard drives 18 hardward 18 memory 18 optional 19 redundancy 20 software 19 File and Print Services for NetWare. See FPNW.
Index NFS 120 simple 120 squashed 121 media offsite storage 156 rotation 156 memory 18 Microsoft Services for UNIX. See SFU mount points 62 modifying share properties 111 network protocols 106 protocol properties settings 114 protocol settings 102 sharing 98 user mapping server 107 user mappings 120 NIC teams.
Index editing schedule properties 52 editing snapshot properties 58 error codes 159 global settings 47 image directory 48 image groups 54 inactive period 47 inactive time-out 48 managing snapshots 55 overview 39 restore defaults 48 restore snapshot 60 schedules 50 storage limitations 46 undo snapshot changes 59 volume configuration settings 49 volume display 45 volume settings 48 R rack stability, warning 15 rapid startup utility defined 20 redundancy 20 related documentation 13 remote access methods list
Index squashed mappings 121 squashing 107 subfolder, navigating to 81 symbols in text 13 symbols on equipment 13 synchronization 130 system date, changing 33 system storage managing 28 system time, changing 33 T tape libraries 155 technical support, HP 15 Telnet Server auditing log 152 authentication tab 151 configuring 151 enabling 151 sessions information 152 settings 152 using 129 Terminal Services defined 36 described 150 exiting 36 opening 36 using 129 text symbols 13 time, system, changing 33 troubl
Index 172 NAS 1000s Administration Guide