You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/storage/files/nfs-root-squash.md
+9-7Lines changed: 9 additions & 7 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,5 +1,5 @@
1
1
---
2
-
title: Configure root squash settings for NFS Azure file shares
2
+
title: Configure Root Squash Settings for NFS Azure File Shares
3
3
description: Root squash is a security feature that prevents unauthorized root-level access to the NFS server by client machines. Learn how to configure root squash for NFS Azure file shares.
4
4
author: khdownie
5
5
ms.service: azure-file-storage
@@ -12,7 +12,7 @@ ms.author: kendownie
12
12
13
13
# Configure root squash for Azure Files
14
14
15
-
Permissions for NFS file shares are enforced by the client OS rather than the Azure Files service. Root squash is an administrative security feature in NFS that prevents unauthorized root-level access to the NFS server by client machines. This functionality is an important part of protecting user data and system settings from manipulation by untrusted or compromised clients.
15
+
Permissions for NFS file shares are enforced by the client operating system rather than the Azure Files service. Root squash is an administrative security feature in NFS that prevents unauthorized root-level access to the NFS server by client machines. This functionality is an important part of protecting user data and system settings from manipulation by untrusted or compromised clients.
16
16
17
17
Administrators should enable root squash in environments where multiple users or systems access the NFS share, especially in scenarios where client machines aren't fully trusted. By converting root users to anonymous users, root squash ensures that even if a client machine is compromised, the attacker can't exploit root privileges to access or modify critical files on the NFS server.
18
18
@@ -61,7 +61,7 @@ The following table highlights the UID behavior observed from the server when sp
61
61
62
62
## Configure root squash on an existing NFS file share (Microsoft.Storage)
63
63
64
-
You can configure root squash settings via the Azure portal, Azure PowerShell, or Azure CLI.
64
+
For Azure classic file shares that use the Microsoft.Storage resource provider, you can configure root squash settings via the Azure portal, Azure PowerShell, or Azure CLI.
65
65
66
66
# [Portal](#tab/azure-portal)
67
67
@@ -177,15 +177,17 @@ You can configure root squash settings via the Azure portal, Azure PowerShell, o
177
177
178
178
## Configure root squash on an existing NFS file share (Microsoft.FileShares)
179
179
180
-
You can configure root squash settings on an existing NFS file share (Microsoft.FileShares) via the Azure portal.
180
+
For Azure file shares that use the Microsoft.FileShares resource provider (preview), you can configure root squash settings via the Azure portal.
181
181
182
182
1. Sign in to the Azure portal and navigate to the file share.
183
-
2. In the service menu, under **Settings**, select **Configuration**.
184
-
3. Toggle the Root squash setting as desired.
183
+
184
+
1. In the service menu, under **Settings**, select **Configuration**.
185
+
186
+
1. Toggle the Root squash setting as desired.
185
187
186
188
187
189
188
-
4. Select **Save** to update the root squash value.
190
+
1. Select **Save** to update the root squash value.
0 commit comments