Justin Parisi
๐ค SpeakerAppearances Over Time
Podcast Appearances
So as far as Isilon and migrating over to us, one of the challenges I see a lot as a TME for NAS is the multi-protocol challenge, right?
Being able to map users from Unix-style security to NTFS-style security and vice versa.
How is the transition team making that particular portion of that easier for customers?
You mean Gladys and HR?
Yeah, the way I always like to explain it is when you're dealing with mixed security style, and like you mentioned, you don't normally need it.
And I think the reason why people get confused with it is because they think mixed means both NFS and CIFS, and they get that terminology conflated.
And I think that's partially our fault for naming it mixed.
But I digress.
So, I mean, you know, mixed is just the security style allows you to toggle in between effective security styles of Unix or NTFS, depending on who has taken ownership the last time.
So normally you don't need that because you don't need to go between security styles.
And like you said, most people only care about how they get to their data if they have access to it.
In most cases, if you're in a Windows environment, use Windows Security because you want to use what's familiar to you.
You want to be able to set it from the GUI, use the properties tab and all that stuff.
Normally, Unix styles reserved for the people that want to write applications and have applications writing to data.
stores like, you know, NFS shares and that sort of thing.
So you worry more about security style for that in those cases.
But in general, you pick one, you stick with it, you're good to go.
Name mappings become a challenge because when you come from those other environments, things are usually a mess because they haven't had to manage certain things because
Sometimes you're given shortcuts to fix things that are problems in your infrastructure, and we're just basically putting a Band-Aid on it from the storage perspective.
And when you come to NetApp, you have to kind of rejigger it a little bit to get it into a working state to where you're doing it the right way and that you're not opening up security holes by allowing access to things where you maybe shouldn't.