On Wed, Mar 16, 2011 at 9:48 AM, Ross Walker <rswwal...@gmail.com> wrote:
> Samba has all those features as well. It has native support for different
> platform ACLs
> (Linux/Solaris/BSD) and supports mapping POSIX perms with platform ACLs to
> present
> a quasi NT ACL that reflects the native permissions of the host.
Can you point to documentation that describes how to get SAMBA to
present ZFS ACLs as native NTFS ACLs ?
Including properly handling AD groups and allowing for full
management of the ACLs from the client side.
> Samba even has modules for mapping NT RIDs to Nix UIDs/GIDs as well as a
> module that
> supports "Previous Versions" using the hosts native snapshot method.
But... if SAMBA has native AD authentication, and the underlying
OS can authenticate against AD, why do we need to have native Unix
accounts for the SAMBA users ?
> The one glaring deficiency Samba has though, in Sun's eyes not mine, is that
> it runs in
> user space, though I believe that's just the cover song for "It wasn't
> invented here".
Given the performance difference I have seen between in kernel and
user space NFS server processes, I expect the in kernel CIFS service
to be substantially faster than a user space service. Our current
performance limitation is at the SAMBA layer.
For me this is not academic, as we have a large file server (20 TB
and over 400 million files) that needs to be presented to the end
users as one share (for some reasonably good business reasons). By
policy we need a solution that we can get support on, so assembling a
solution out various open source modules is not acceptable. We also
need to keep the configuration as simple as possible for future
manageability.
We are currently using Solaris 10 with SAMBA and have some
usability issues as follows.
1. need to manage Solaris as well as AD users/groups
2. Unix / Solaris limitation of 16 / 32 group membership
3. ACL management (must be done on the Solaris side) and visibility
4. performance (especially with many small files)
We can solve some of the above with SAMBA, but we are hoping that
the Sun CIFS server in Solaris 11 resolves all of these issues. We
start testing with Solaris 11 Express shortly.
--
{--------1---------2---------3---------4---------5---------6---------7---------}
Paul Kraus
-> Senior Systems Architect, Garnet River ( http://www.garnetriver.com/ )
-> Sound Coordinator, Schenectady Light Opera Company (
http://www.sloctheater.org/ )
-> Technical Advisor, RPI Players
_______________________________________________
zfs-discuss mailing list
zfs-discuss@opensolaris.org
http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
