You are currently offline, waiting for your internet to reconnect

HOW TO: Use Client Groups in Server for NFS to Manage Permissions During a UNIX-to-Windows Migration

Support for Windows XP has ended

Microsoft ended support for Windows XP on April 8, 2014. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

This article was previously published under Q324221
This article has been archived. It is offered "as is" and will no longer be updated.
Server for NFS allows the administrator to set the mount permissions for NFS shares for groups of client computers, simplifying management. The NFS export (share) can be made available as a read-only share, a read-write share, or access can be denied for a group of computers. Root access can also be set by group.

back to the top

Create Client Group in Server for NFS

NFS client computers can be logically grouped to enable the administrator to easily manage mount permissions for all the computers in a group without having to set them for individual machines. The first step in this process is creating the client groups.

To create a client group:
  1. Log on to the Server for NFS computer with an administrative level account.
  2. Click Start, Programs, Services for UNIX, Services for UNIX Administration to open the SFU Administrative MMC.
  3. Click the Server for NFS pane. Click on the Client Groups tab.
  4. In the Group Name field, type in the name for the new group and click New.
  5. With the new name highlighted, click Advanced to see the clients in the group and be able to add new clients.
  6. Enter a client name in the Type the name of the client machine you want to add field, and then click Add to add it to the group.
  7. Continue adding client machines to the group as desired. When you have finished, click Apply to actually create the client group.
back to the top

Set Mount Permissions for Client Group in Server for NFS

Mount permissions for Server for NFS shares default to read-only, no root access, for all clients. The administrator can change this, either at the time the share is created, or later.

To set the mount permissions for a shared folder:
  1. Log onto the Windows server with an administrative level account.
  2. Open Windows Explorer.
  3. Highlight the folder you want to set the permissions for and right click. Select Sharing.
  4. Click on the NFS Sharing tab.
  5. If the folder is not already shared, click Share this folder.
  6. Click on the Permissions button.
  7. Set the global permissions for the All Machines client group (default is read only, no root access.)
  8. Click Add to bring up the Add Clients and Groups dialog. From here you can add groups of client machines and set their access permission, or type in the name of an individual computer to set permissions for just that node.
  9. When you have set the permissions as you want them, click OK to add the client group.
  10. Click OK again to make the change, then finish setting any other options for the NFS share and click OK to finish sharing the folder via NFS.Note: You should install at least one User Name Mapping service on your network to map UNIX and Windows user names to each other. For instructions on how to install and configure User Name Mapping service, see article in our REFERENCES section.
back to the top


If Server for NFS is installed on a non domain controller, you must also install the Server for NFS Authentication module on the local machine. See KB article:
324086 HOW TO: Set Up Server for NFS
back to the top

For more information about performing maintenance tasks after migrating from UNIX to Windows, see the Knowledge Base article:
324539 How To: Perform Maintenance and Ancillary Tasks After a UNIX-to-Windows Migration

For more information about configuring the User Name Mapping service, see the Knowledge Base article:
324073 HOW TO: Configure User Name Mapping
back to the top


Article ID: 324221 - Last Review: 12/07/2015 11:27:24 - Revision: 2.2

Microsoft Windows 2000 Server, Microsoft Windows 2000 Advanced Server, Microsoft Windows 2000 Professional Edition, Microsoft Windows XP Professional, Microsoft Windows NT 4.0 Service Pack 6a, Microsoft Windows NT Workstation 4.0 Developer Edition, Microsoft Windows Services for UNIX 3.0 Standard Edition

  • kbnosurvey kbarchive kbhowto kbhowtomaster KB324221