Archive for the 'zfs' Category

Giving a user permissions on zfs volume

Published on May 28, 2011 in Solaris and zfs. 0 Comments

The requirement is for a user to be able to create, mount, snapshot and destroy zfs volumes

The background to this is here

chmod A+user:backups:add_subdirectory:fd:allow /swamp/backups
zfs allow -ld backups create,destroy,snapshot,mount swamp/backups

Where backups is the user name, and /swamp/backups is the pool I want the to have permissions on

I can now see the permissions thus

bash-3.00# zfs allow swamp/backups
---- Permissions on swamp/backups ------------------------------------
Local+Descendent permissions:
        user backups create,destroy,mount,snapshot
bash-3.00#

Now to make sure it all works

 
bash-3.00$ id
uid=2000(backups) gid=2000(backups)
 
bash-3.00$ /usr/sbin/zfs list | grep swamp       
swamp                           126K  2.68T    23K  /swamp
swamp/backups                    24K  2.68T    24K  /swamp/backups
 
bash-3.00$ /usr/sbin/zfs create swamp/backups/oi 
bash-3.00$ /usr/sbin/zfs list | grep swamp      
swamp                           155K  2.68T    23K  /swamp
swamp/backups                    45K  2.68T    24K  /swamp/backups
swamp/backups/oi                 21K  2.68T    21K  /swamp/backups/oi
 
bash-3.00$ /usr/sbin/zfs snapshot  swamp/backups/oi@now
bash-3.00$ /usr/sbin/zfs list | grep swamp             
swamp                           156K  2.68T    23K  /swamp
swamp/backups                    45K  2.68T    24K  /swamp/backups
swamp/backups/oi                 21K  2.68T    21K  /swamp/backups/oi
swamp/backups/oi@now               0      -    21K  -
 
bash-3.00$ /usr/sbin/zfs destroy  swamp/backups/oi@now 
bash-3.00$ /usr/sbin/zfs destroy  swamp/backups/oi    
 
bash-3.00$ /usr/sbin/zfs list | grep swamp            
swamp                           128K  2.68T    23K  /swamp
swamp/backups                    24K  2.68T    24K  /swamp/backups