Go to main content

Managing Kerberos and Other Authentication Services in Oracle® Solaris 11.3

Exit Print View

Updated: May 2019
 
 

How to Share NFS Files With Diffie-Hellman Authentication

This procedure protects shared file systems on an NFS server by requiring authentication for access.

Before You Begin

Diffie-Hellman public key authentication must be enabled on the network. To enable authentication on the network, complete How to Set Up a Diffie-Hellman Key for an NIS Host.

You must become an administrator who is assigned the System Management rights profile to perform this task. For more information, see Using Your Assigned Administrative Rights in Securing Users and Processes in Oracle Solaris 11.3.

  1. On the NFS server, share a file system with Diffie-Hellman authentication.
    # share -F nfs -o sec=dh /filesystem

    where filesystem is the file system that is being shared.

    The –o sec=dh option means that AUTH_DH authentication is now required to access the file system.

  2. On an NFS client, mount a file system with Diffie-Hellman authentication.
    # mount -F nfs -o sec=dh server:filesystem mount-point
    server

    Is the name of the system that is sharing filesystem

    filesystem

    Is the name of the file system that is being shared, such as opt

    mount-point

    Is the name of the mount point, such as /opt

    The –o sec=dh option mounts the file system with AUTH_DH authentication.