This section describes how to create a local UNIX authentication user. When a user accesses the storage system through an NFS or FTP client, if the client user has not been added to a domain, the storage system will fail to identify the user. Therefore, you need to create a local UNIX authentication user (with the same ID as the access user) on DeviceManager. This facilitates the management of users of the NFS or FTP client, such as user quota allocation.
Procedure
- Choose Resources > Access > Authentication User > UNIX Users > Local Authentication User.
- Select a desired account from the Account drop-down list in the upper left corner.
- Click Create.
The Create Local UNIX Authentication User page is displayed.
- Set basic information about the local authentication user.
Table 1 describes related parameters.
Table 1 Local authentication user parameters Parameter
Description
Name
Name of the local authentication user.
NOTE:- The name must be unique.
- The name cannot contain special characters "/\][:;|=,+*?<>@#, or spaces.
- The name contains 1 to 64 characters.
ID
ID of the local authentication user.
Primary Group
Primary user group to which the local authentication user belongs. You can click Select and select a user group on the Select Primary Group page that is displayed.
Password
This parameter is mandatory only for FTP service access. Click Set Password and set Password and Confirm Password for the local authentication user. Confirm Password and Password must be the same.
[Value range]
The default password rules are as follows:
- The password contains 8 to 32 characters.
- The password must contain at least two of the following types: special characters, uppercase letters, lowercase letters, and digits. Special characters include !"#$%&'()*+,-./:;<=>?@[\]^`{_|}~, and spaces.
- The password cannot contain three consecutive identical characters.
- The password cannot be the same as the user name or the user name spelled backward.
NOTE:You can set security policies for the password of a local authentication user on the Set Security Policy page. If Password Validity Period is 0, the password never expires. For the security purpose, you are advised to set a specific password validity period. After the password expires, the user cannot access shares. After the password expires, you can set a password again or modify the password security policy.
Status
Whether to enable the local authentication user.
Description
Description of the local authentication user.
NOTE:The description can be left blank or contain up to 255 characters.
Secondary Groups
Click
on the right of Secondary Groups. In the Available Secondary Groups list, select desired secondary groups. They will be automatically added to the Selected Secondary Groups list.NOTE:- The concepts of the primary group and secondary group are for local authentication users and have no relationship with each other. A local authentication user must belong to a primary group, but does not necessarily belong to a secondary group.
- After a secondary group is added to or deleted from a local user, the secondary group of the local user in the NFS extended group can be updated 5 minutes later.
- Click OK.