#Multi-protocol SMB/NFS and Active Directory User Mapping

1 messages · Page 1 of 1 (latest)

pliant goblet
#

I cross posted this on the NetApp A-Team Slack site. Sorry if that seems spammy.

Most of our important workloads run on Linux and the ability to share files between Windows and Linux via SMB/NFS is a pretty important requirement. After all, who wants to duplicate data or SCP files around.  I have this question from one of our Enterprise Admins. For ONTAP to support multi-protocol sharing, do we need to add UIDs and GIDs to Active Directory first? My guess is yes, but I figured I'd ask. Based on this source: https://kb.netapp.com/onprem/ontap/da/NAS/Does_Data_ONTAP_support_System_Security_Services_Daemon_(SSSD)_algorithms?Also, does anyone have any experience in successfully setting up multi-protocol support? Are there any caveats other don't pick "mixed" authentication.

Searching here, I found a PPT that @bleak rivet mentioned about multi-protocol. Do you know where/how I can find that?

Thanks in advance!

signal aurora
#

If you have a separate LDAP infrastructure for Linux you don' t need the UIDs in the Active Directory. ONTAP can do a rule-based mapping on names or even hard-wired if necessary.
https://kb.netapp.com/onprem/ontap/da/NAS/Understanding_name-mapping_in_a_multiprotocol_environment

NetApp Knowledge Base
Understanding name-mapping in a multiprotocol environment

This article describes how name-mapping works in a multiprotocol environment (For NFS / CIFS clients accessing NTFS / UNIX security style resources).