Page 1
1
OceanStor 2600 V3 Storage System
V300R005 Quick Configuration Guide for
File (Windows)
Issue: 02
Release date: 2016-09-30
Copyright ©Huawei Technologies Co., Ltd. 2018.
All rights reserved
Overview
Where to get help
a
b
Feedback
c
This document helps you quickly configure file services. For more information, see the OceanStor 2600 V3
Storage System V300R005 Basic Storage Service Guide for File.
You can obtain this document from the documentation CD-ROM delivered with the product or from
http://e.huawei.com. You can also register for a Huawei support account at this website to browse and download
valuable information and sign up for product updates.
Your feedback is important to us. If you have any comments about this document, please submit them to us on the
Huawei Enterprise website.
Before You Start
2600 V3
(excluding OceanStor 2600 V3 for video surveillance)
Page 2
2
Maintenance terminal
Run DeviceManager
CIFS Protocol
OceanStor Storage
System
Windows Client
Users can manage and maintain the storage
system from a maintenance terminal running
the DeviceManager program developed by
Huawei. The maintenance terminal connects
to the management network port of the
storage system.
1
2
3
4
1
File system of storage system provide filelevel data storage services featuring high
performance and enhanced security.
2
CIFS is a file system sharing protocol
developed by Microsoft and intended for
Windows. Through CIFS, files can be
transferred and shared between Windows
clients.
3
Generally, CIFS shares provided by storage
systems are public directories and can be
accessed by all authorized users. If you
want to set a private directory, enable
Homedir so that each user can only access
the directory that share the same user name
with the user.
4
Windows Client
File System
Shared
directory
Private
directory
1 Introduction
Basic Application Scenario
1a
Page 3
3
The storage system automatically identifies all
disks.
1
Disk domains are comprised of different types
of disks. Services of different disk domains are
isolated from each other.
2
Storage pools are created in disk domains and
comprised of RAID groups formed by disks of
different performance. Storage pools provide
logical storage space.
3
A file system can be created in a storage pool to
provide storage space for a CIFS share.
4
1b
After creating a CIFS share, you can set different
access permissions for users.
5
A shared file system appears as a directory on a
Windows-based client when the client accesses the
CIFS share provided by a storage system.
A storage system shares its file system with a user
in CIFS Homedir mode. The shared file system
appears as a directory. The directory name is the
same as the user name. The Homedir directory can
be accessed only by this user..
6
SSD SAS NL-SAS
share
File system
Storage pool
Disk domain
Disks
High-performance tier Performance tier Capacity tier
High-performance tier Performance tier Capacity tier
Data area Data area Data area
Hot spare area
CIFS share
1
2
3
4
5
6
Hot spare area Hot spare area
Storage system
File system
Share directories
Homedir share
Sharename Username
Page 4
4
Preparation Item Source Example Value
Maintenance terminal: Logging in to the DeviceManager
Management network port IP addresses
Network
administrator
Default value:
192.168.128.101
A1
User name and password for logging in to the
DeviceManager
System
administrator
Default user name:
admin
Default password:
Admin@storage
A2
Maintenance terminal: Creating a disk domain
Disk domain name User-defined DiskDomain000 B1
Disk encryption type
Service
provider
Non-Encrypting Disk B2
Number of disks forming disk domains
Service
provider
Performance tier
(SAS): 8
Hot Spare Policy:
High
Capacity tier
(NL-SAS) : 16
Hot Spare Policy:
High
B3 Multi-choice
□ High-performance
tier
SSDs:
Hot Spare Policy:
□ Performance tier
SAS disks:
Hot Spare Policy:
□ Capacity tier
NL-SAS disks:
Hot Spare Policy:
Maintenance terminal: Creating a storage pool
Storage pool name User-defined StoragePool000 C1
Usage
Service
provider
File Storage
Services
C2
2 Data Preparation and Operation instructions
The CIFS is a value-added feature that requires a license. For details about how to apply for and import a license,
see the OceanStor 2200 V3&2600 V3 Storage Systems V300R005 Installation Guide.Before operations, follow
instructions in the following table to prepare data and enter actual values in the Value column.
Data preparation
2a
This document uses example values to describe the configuration.
Replace example values with actual values during actual configuration.
The figure in the right shows the mappings of example values and actual values in the following table.
A1
Example
Value
You are advised to change the default
password immediately after you have logged
in to the storage system for the first time and
periodically change your password in the
future. This reduces the password leakage
risks. For details about how to change the
password, see OceanStor 2200 V3&2600
V3 Storage System V300R005 Administrator
Guide.
High-performance tier uses SSDs.
Performance tier uses SAS disks.
Capacity tier uses NL-SAS disks.
Page 5
Preparation Item Source Value Value
Storage pool owning to Disk domain Service provider DiskDomain000 C3
Storage tier and capacity Service provider
Performance tier
RAID Policy:
RAID 5(4D+1P)
Capacity: 1 TB
Capacity tier
RAID Policy:
RAID 6(4D+2P)
Capacity: 1 TB
Total Storage Pool
Capacity: 2 TB
C4 Multi-choice
□ Highperformance tier
RAID Policy:
Capacity:
□ Performance
tier
RAID Policy:
Capacity:
□ Capacity tier
RAID Policy:
Capacity:
Maintenance Terminal: Creating a File System
File system name Customized FileSystem000 D1
Thin
Service provider Enable D2
Capacity Service provider 200 GB D3
Application Scenario
Service provider
64 KB
D4
Quantity Service provider 1 D5
Owning storage pool Service provider StoragePool000 D6
Maintenance Terminal: Setting CIFS Service Parameters
CIFS Services Service provider Enable E1
Authentication Mode
Service provider Global authentication E2
Performance Settings
Service provider
Notify: Enable
Oplock: Enable
E3
Security Settings
Service provider - E3
After thin provisioning is enabled, the storage system
will dynamically allocate storage resources on demand.
Notify: Notify: After this parameter is enabled, a client's
operations on a directory, such as adding a subdirectory, adding a new file, modifying the directory,
and modifying a file, can be sensed by other clients
that are accessing this directory or the parent directory
of this directory through automatic display refreshing.
Oplock: a mechanism that improves client access
efficiency. After this mechanism is enabled, files are
buffered locally before being sent to shared storage.
5
Local authentication: Applies to scenarios where a local
authentication user or user group accesses a CIFS
share in a non-domain environment
Domain authentication: Applies to scenarios where a
domain user or user group accesses a CIFS share in
an AD domain.
Global authentication: Local authentication is used first.
If local authentication fails, domain authentication is
used.
Guest: After the guest service is enabled, users can
access shared directories without providing
usernames or password. Besides, users have the
same permission as the Everyone group.
Page 6
6
Preparation Item Source Example Value
Access Settings
Service provider - E4
Signature Settings
Service provider
Signature: Enable
Signature enforcement:
Enable
E4
Maintenance Terminal: Creating a CIFS Share
File system Service provider FileSystem000 E5
CIFS share name
Service provider share01 E6
CA
Service provider - E7
Maintenance Terminal: Setting Homedir Share
Homedir
Service provider Enable F1
File system
Service provider FileSystem000 F2
Maintenance Terminal: Adding a Storage System to an AD Domain
Active DNS IP Address System
administrator
192.168.128.102 G1
Domain Administrator Username and Password
System
administrator
User name: admin
Password:
Admin@123456
G2
Full Domain Name System
administrator
domain.com G3
System Name System
administrator
storage1 G4
Overwrite System Name System
administrator
Enable G5
Maintenance Terminal: Creating a Local Authentication User Group
User group name Service provider Usergroup H1
Maintenance Terminal: Creating a Local Authentication User
File system for which Homedir is enabled.
In Homedir share mode, a file system is shared to a
specific user as an exclusive directory. The user can
only view and access the exclusive directory
named after its user name.
Used for SMB3.0 continuous availability, only applied
to the share for Hyper-V.
Signature: This function is available when clients
adopt SMB1.0. After this option is selected, the system
support the signature function.
Signature enforcement: After this option is selected ,
client must adopt the signature function.
After ABSE (Access based share enumeration)
has been enabled, when user view the CIFS share
information, only the CIFS shares that the user has
permission to access displays.
If the signature function is disabled, the
storage system may encounter man-inthemiddle (MITM) attacks, resulting in
security risks.
Page 7
7
Preparation Item Source Example Value
User name and password used for logging in to a
CIFS share
Service provider
User name: cifsuser
Password: Admin@123456 H2
Primary group
Service provider Usergroup H3
Maintenance Terminal: Adding a User (User Group) That Can Be Accessed by a CIFS Share
User/User group
Service provider
a Local Authentication User
I1
User
Service provider cifsuser I2
Permission level
Service provider Read-write I3
Maintenance Terminal: Creating a Logic Port
Name
Service provider logicalip J1
IP Address Type
Service provider IPv4 Address J2
IPv4 Address
Service provider 192.168.29.30 J3
Subnet Mask
Service provider 255.255.255.0 J4
Primary Port
Service provider CTE0.L1. IOM1.P2 J5
IP Address Floating
Service provider Enable J6
Failback Mode
Service provider Automatic J7
Active Now
Service provider Enable J8
User group to which a user belongs. Users must belong
to a primary group.
When the primary port is disabled, the IP
address will be floated to another port that can
be used.
Failback mode of the IP address:
Automatic and Manual.
Click More and choose Set Security Policies
to set a security policy for the password of the
local authentication user in the file system.
For security purpose, you are advised to
select Password Validity Period (Days). After
you select this item, your password will never
expire. The default validity period is 180 days.
After the password expires, the user cannot
access shares. You can set a password again
and modify the password security policy.
Page 8
8
3 Allocating Storage Space
Logging in to the DeviceManager
3a
The security certificate prompt message varies with
operating systems and browser versions of maintenance
terminals. Ignore the message and continue accessing
storage devices.
A2
A2
1
2
A1
1. Enter https://XXX.XXX.XXX.XXX:8088, where
XXX.XXX.XXX.XXX indicates the IP address of the
management network port. 192.168.128.101 is used as
an example.
2. Click Enter.
Creating a disk domain
3b
1
2
Operation instructions
2b
Before operations, learn about the meaning of icons involved in the
configuration, as shown in the following table.
Icon Meaning
Double-click
Click
Right-click
Input or Set
Step
Substep
1 2
Example
2
1
Step1:
Substep1: Enter the user name and
password.
Substep2: Click Log In.
Page 9
9
Keep the default values for RAID Policy.
C1
C2
C3
3
2
1
5
4
Creating a file system
3d
To create storage tiers, see the actual value from C4 in
your data preparation table. The figure above takes
performance tier and capacity tier creations as an example.
Creating a storage pool
3c
B1
For the actual disk numbers, see B3 in your data
preparation table. The figure above takes performance
tier and capacity tier creations as an example.
4
3
1
5
2
B2
Page 10
10
Setting CIFS Service Parameters
3e
Creating a CIFS Share
3f
1
2
1
2
E3
3
4
5
E2
6
E4
7
E1
1
2
If creating an CIFS Share 3f Creating an CIFS Share
If creating a HomedirShare 3g Creating a Homedir
Share
E5
E6
E7
1
2
3
D1
D4
D3
D6
D2
1
5
2
3
4
D5
Page 11
11
Creating a Homedir Share
3g
F1
F2
1
2
3
4
5
1
2
1
2
Page 12
12
4 Adding a Storage System to an
AD Domain
G2
G3
G4
5 Creating a Local
Authentication User (Group)
Creating a Local Authentication
User Group
5a
1
2
3
1
2
1
2
5
H1
2
1
Creating a Local Authentication User
5b
1
2
G1
1
2
If the CIFS is applied to a domain environment
4 Adding a Storage System to an AD Domain
If the CIFS is applied to a non-domain environment
5 Creating a Local Authentication User (Group)
G2
4
G5
Page 13
13
6 Adding a User (User Group) That
Can Be Accessed by a CIFS Share
I1
1
3
1
1
2
2
2
I2
1
2
I3
In a domain, select a domain user or domain user
group in User/User Group.
1
2
H2
H2
H2
H3
1
2
3
The password validity period of a file system's local
authentication user is 180 days by default. Change
the password in time. If a password expires, the
password may not be used and services may be
interrupted.
Page 14
14
7 Creating a Logical port
J1
J3
J4
J2
1
2
1
2
1
2
J5
1
2
J6
J7
J8
2
1
3
4
Page 15
Operation Instruction Windows Server 2008
Go to the Map
Network Drive dialog
box.
1. Right-click Computer.
2. Choose Map Network Drive.
Mount the CIFS Normal
share path. 1. Set Folder to \\192.168.29.30\share01.
2. Click Finish.
Authenticate the CIFS
Normal share.
1. Enter the name and password of the authorized user.
2. Click OK.
Check the CIFS Share
1. Double-click Computer.
2. In the Network Drive area, view the mapped network drives.
Change parameter values based on the actual values of J3 and E2 in your data preparation table.
Optional: Access a CIFS Share .
8a
Operation Instruction Windows Server 2008
Go to the Map
Network Drive dialog
box.
1. Right-click Computer.
2. Choose Map Network Drive.
Mount the Homedir
share path.
1. Set Folder to \\192.168.29.30\username.
2. Click Finish.
Authenticate the
Homedir share.
1. Enter the user name and password.
2. Click OK.
Check the Homedir
Share.
1.Double-click Computer.
2. In the Network Drive area, view the mapped network drives.
Change parameter values based on the actual values of J3 and H2 in your data preparation table.
Optional: Access a Homedir Share .
8b
8 Access the Share
If it is a non-domain environment, enter the name and password of the local
authentication user .
If it is a AD domain environment, enter the name and password of the AD domain
user, and the domain user name must be entered in the format of domain
name\user name.
username is the user of the Homedir share.
If it is a non-domain environment, the username is the name of the local
authentication user.
If it is a AD domain environment, the username must be entered in the format of
~domain name~user name.
If it is a non-domain environment, enter the name and password of the local
authentication user .
If it is a AD domain environment, enter the name and password of the AD domain
user, and the domain user name must be entered in the format of domain
name\user name.
15
Page 16
16
If You Want to... Refer to... DeviceManager Icon
Know the theory of CIFS and the
application scenario.
OceanStor 2600 V3 Storage System
V300R005 File Access and
Protocols Feature Guide
9 How to Contact Huawei
Huawei customer service center
Address: Huawei Industrial Base, Bantian, Longgang, Shenzhen 518129, People's Republic of China
Website: http://e.huawei.com
Local Huawei technical support personnel
Obtain contact information for local Huaweioffices at http://support.huawei.com/enterprise.
10 Next
Loading...