This post is more than 5 years old
65 Posts
0
5380
November 21st, 2011 01:00
Unable to ftp to CIFS share.
I went through the following procedures to configure ftp access on CIFS share, all went well, but it doesn't get authenticate.
I think the user needs to granted ftp server access. How do i fix this? ?
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Steps for configuring FTP for CIFS users:
Install the Celerra Home Directory Management snapin:
a) From the Celerra Application & Tools CD, install the "Celerra CIFS Management MMC Snapins" on a Windows platform [CelerraCifsMgmt.exe].
Note: Accept the default paths during the install, but on the "Select Components" screen, uncheck all boxes except for the "Home Directory Management" service.
Enable the Home Directory service:
a) From the Programs or Administrative Tools section, open the "Celerra Management" program.
b) Right-click "Data Mover Management" and connect to the appropriate Data Mover using "Connect to Data Mover."
c) Right-click the "HomeDir" section and "Enable" the service.
Note: This starts the Home Directory service and creates a blank Home Directory map file /.etc/homedir file.
# server_cifs server_2 |grep Home
Home Directory Shares ENABLED, map=/.etc/homedir
d) Use the Celerra Management HomeDir interface to add entries to the map file.
Example:
# cat /.etc/homedir
test.ftp.emc.com:*:/fs3/ftp/cifs:create
Note: The first colon-delimited field represents the Windows Domain FQDN, the second field represents all “users” for the specified domain when using the "*" wildcard, the third field defines the FTP Home Directory path, and the last field “create” serves to automatically create the User's FTP directory upon first login to the FTP service.
Lock down CIFS Users to their own Home Directory by enabling the FTP Homedir option:
# server_ftp server_2 -service -stop
server_2 : done
# server_ftp server_2 -modify -homedir enable
server_2 : done
FTPD CONFIGURATION
==================
State : stopped
Control Port : 21
Data Port : 20
Default dir : /
Home dir : enable
----output abbreviated--------
# server_ftp server_2 -service -start
server_2 : done
Note: Setting -homedir enable makes sure that CIFS Users will not be able to navigate out of their own Home Directory. If sub-directories exist, the User would be able to navigate down the tree, provided they had NT permissions. Without the Homedir enable option set, a CIFS user could navigate up the file system path and even to the rootfs of the Data Mover, provided the User had the requisite NTFS permissions.
Test the FTP setup by logging into the Data Mover's FTP service using a fully qualified user name and password:
c:>ftp 192.1.10.27
Connected to 192.1.10.27.
220 server_2 FTP server (EMC-SNAS: 5.6.43.8) ready.
User (192.1.10.27:(none)): user@test.ftp.emc.com
331 Password required for user@test.ftp.emc.com.
Password:
230 NT User user@test.ftp.emc.com logged in.
ftp >
Rainer_EMC
4 Operator
•
8.6K Posts
0
November 21st, 2011 04:00
That error just means that it cant open the users home directory
Most likely causes:
- Homedir config incorrect
- Homedir doesn’t exist or typo (remember its case sensitive)
- Permissions on the homedir not sufficient
I would suggest to read the ftp manual and first try ftp with a simpler config – i.e. a local account, then use CIFS to see if home directories are working before combining both.
BTW posting screenshots as graphics make it difficult for people who are watching the forum via Email.
Rainer
Rainer_EMC
4 Operator
•
8.6K Posts
0
November 21st, 2011 02:00
Did you start the ftp service ?
Take a look at the ftp manual
Rainer
uk2
65 Posts
0
November 21st, 2011 03:00
Yes i did started the ftp server.
This is the error i get when i try to login to FTP server. please help...
server_2 :
256 Cifs threads started
Security mode = NT
Max protocol = SMB2
I18N mode = UNICODE
Home Directory Shares ENABLED, map=/.etc/homedir
Usermapper auto broadcast enabled
Usermapper[0] = [127.0.0.1] state:active (auto discovered)
Enabled interfaces: (All interfaces are enabled)
Disabled interfaces: (No interface disabled)
DOMAIN SANLAB FQDN=sanlab.com SITE=Default-First-Site-Name RC=3
SID=S-1-5-15-2459c857-d3d3b5f8-d9d5793d-ffffffff
>DC=DC(192.168.100.200) ref=4 time=1 ms (Closest Site)
CIFS Server HQ-FS20[SANLAB] RC=2
Full computer name=hq-fs20.sanlab.com realm=SANLAB.COM
Comment='EMC-SNAS:T7.0.12.0'
if=cge0 l=192.168.100.150 b=192.168.100.255 mac=0:c:29:92:5c:1c
FQDN=hq-fs20.sanlab.com (Updated to DNS)
Password change interval: 0 minutes
Last password change: Sat Nov 19 20:33:58 2011 GMT
Password versions: 2
-----------------------------------------------------------------------------------------------------------------
[root@vnxvm nasadmin]# server_ftp server_2 -modify -homedir enable
server_2 : done
FTPD CONFIGURATION
==================
State : stopped
Control Port : 21
Data Port : 20
Default dir : /dept/Homedir
Home dir : enable
Keepalive : 1
High watermark : 65536
Low watermark : 32768
Timeout : 900
Max timeout : 7200
Read size : 8192
Write size : 49152
Umask : 27
Max connection : 65535
SSL CONFIGURATION
=================
Control channel mode : disable
Data channel mode : disable
Persona : default
Protocol : default
Cipher : default
Control port : 990
Data port : 989
uk2
65 Posts
0
November 22nd, 2011 06:00
Thanks Rainer, you are right. I've reconfigured the home drive mapping in the user profile in the AD; that fixed this issue. Thanks a lot for your support Rainer your hint made my day..
Rainer_EMC
4 Operator
•
8.6K Posts
0
November 22nd, 2011 06:00
You’re very welcome
Rainer