Search the MangeEngine site:  
 

Help Center

Quick Start

File Auditing

File Analysis

Data Risk Assessment

Endpoint DLP

Cloud Protection

General settings

Policy Configuration

Release notes

Troubleshooting

Guides

Third-party software Contact us

NetApp server configuration

DataSecurity Plus helps you monitor file and folder events in NetApp servers in real time and provides detailed insights on user operations.

Minimum privileges required for NetApp server auditing

To perform file auditing in NetApp servers, DataSecurity Plus requires certain minimum permissions and privileges.

To provide these, create a dedicated DataSecurity Plus NetApp user and provision them with the following commands and permissions. Note that NetApp management details are necessary for smooth and uninterrupted collection of file activity.

Commands Permissions
Vserver fpolicy Full access
Volume Read only
Vserver cifs Read only
System node Read only

To create roles for the user, use the below commands:

  • security login role create –role dsp_role –cmddirname “vserver fpolicy”
  • security login role create –role dsp_role -cmddirname “volume” –access readonly
  • security login role create –role dsp_role –cmddirname “vserver cifs” –access readonly
  • security login role create -role dsp_role -cmddirname "system node" -access readonly

Note: Users can be created for a cluster or a particular Vserver using the above commands. To create a role for a particular Vserver, add -vserver <vserver_name> in the above commands.

Connect the vsadmin role to the ONTAP management console. The user created with this role can either be a domain user or local user, but they should have access to the target NetApp server via ONTAPI.

Configuring a NetApp server

For NetApp server auditing with DataSecurity Plus, configuring a collector server is required. The collector server acts as an intermediary server that collects file access events from the NetApp server and forwards them to the DataSecurity Plus server.

To configure a NetApp server, follow the steps listed below:

  • Log in to the DataSecurity Plus web console.
  • Configure the domain in which the file server you want to configure is located.
  • Select File Audit from the applications drop-down.
  • Go to Configuration > Data Source > NetApp Server.
  • Click + Add NetApp Server.
  • Select the target NetApp Server Name and click Next.
  • Select the Shares you want to audit and click Next.
  • Under Management Details, enter the Management IP. You can enter the IP of either a Vserver or a Cluster, depending on what type your target machine is.
  • Enter the User Name and Password of the DataSecurity Plus NetApp user account.
  • Specify the Port number through which communication should happen and click Next.
  • Under the Collector Server tab, choose the Domain Name and Collector Server Name, specify the Collector Port, and click Next.
  • The Review Summary tab will give you an overview of the configured NetApp server, Shares, Management Details, and the Collector Server. After verifying the details, click Configure.

Updating NetApp server configurations

To update a configured NetApp server, follow the below given steps as per your server requirements:

  • Under File Audit from the application drop-down, go to Configuration > Data Source > NetApp Server.
  • Select the NetApp server you want to update. Here, you can:
    • Add shares by clicking the Add Share link and selecting the share you want to add.
    • Update the list of shares available for configuration in the server by clicking the refresh icon at the top-right corner of the table.
    • Delete shares by clicking the Edit link and selecting the shares you want to delete.

Note: You can also view reports by clicking the View Reports link.

Editing management IP details

To update the management IP details of a configured NetApp server, follow the below given steps:

  • Log in to your DataSecurity Plus web console.
  • Go to File Audit > Configuration > Data Source > NetApp server under Data Source. You'll see the configured NetApp servers.
  • Click View/Edit Details in the NetApp server whose management IP details you want to edit.
  • Provide the IP address of your Cluster or Vserver depending on your environment in the Management IP tab.
  • Enter the Username and Password.
  • Select the Port type through which communication should happen and provide the port number.
  • Click Save.

Deleting NetApp server configurations

To delete a configured NetApp server:

  • Log in to your DataSecurity Plus web console.
  • Go to File Audit > Configuration > Data Source > NetApp server under Data Source. You'll see the configured NetApp server(s).
  • Choose the target NetApp server from the configured NetApp panel.
  • Click the Delete icon at the top-right corner of the active tab.
  • Select OK to delete the NetApp server from DataSecurity Plus.

Note: Once deleted, servers will no longer be audited. However, previously audited data will be retained.

Topics in this page:

Don't see what you're looking for?

  • Visit our community

    Post your questions in the forum.

     

  • Request additional resources

    Send us your requirements.

     

© 2024 Zoho Corporation Pvt. Ltd. All rights reserved.