Enable NFS v4.2 security labels
Contributors
Suggest changes
-
PDF of this doc site
- Cluster administration
-
Volume administration
- Logical storage management with the CLI
-
NAS storage management
- Configure NFS with the CLI
- Manage NFS with the CLI
-
Manage SMB with the CLI
- Manage file access using SMB
- Security and data encryption
- Data protection and disaster recovery
Collection of separate PDF docs
Creating your file...
This may take a few minutes. Thanks for your patience.
Your file is ready
Beginning with ONTAP 9.9.1, NFS security labels can be enabled. They are disabled by default.
About this task
With NFS v4.2 security labels, ONTAP NFS servers are Mandatory Access Control (MAC) aware, storing and retrieving sec_label attributes sent by clients.
For more information, see RFC7240
NFS v4.2 security labels are not currently supported for NDMP dump operations. If security labels are encountered on files or directories, the dump fails. |
Steps
-
Change the privilege setting to advanced:
set -privilege advanced
-
Enable security labels:
vserver nfs modify -vserver svm_name -v4.2-seclabel enabled