000016066 - APP 3.0 - how to create backups to a unix nfs mountpoint

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000016066
Applies ToSecurID Appliance 3.0
Linux or Solaris NFS server
APP 3.X appliance (nfs client)
IssueAPP 3.0 - how to create NFS backups to another unix file system
Resolution

Assumptions for this example, 

noting this can be scaled once you can successfully backup,
 to restrict permissions or use a different mount account beyond root:
 
/backups is the directory share/export on NFS server
permissions are 777 on /backups

10.10.10.5 is the IP address of the NFS server
root account will be used for the NFS backups
root/password1 is the root login credential on the NFS server

Configuring NFS server is different on Solaris and Linux. 

If you are using a net appliance, refer to the vendor documentation for exporting a file system from that device.

Solaris:

cd /etc/dfs
vi dfstab

add to dfstab:
share -F nfs /backups

start NFS server (if not already running)
/etc/init.d/nfs.server start

Ensure file system is exported:

-bash-3.00# dfshares
RESOURCE                                  SERVER ACCESS    TRANSPORT
     myhost:/backups                          myhost  -         -

If you receive:
-bash-3.00# dfshares
nfs dfshares:moron: RPC: Program not registered

STOP: NFS daemons are not running (statd/lockd/mountd/nfsd).
Check your dfstab for any syntax problems.


Linux:

cd /etc
vi exports, add:

/backups *(rw,root_squash)

start NFS
/etc/init.d/nfs start

Ensure the file system is exported:

[root@myhost rsawebagent]# exportfs -v
/backups           <world>(rw,wdelay,root_squash)


If nothing is returned **STOP**, the file system is not exported.
Check the /etc/exports file for syntax problems.


Try a test mount to ensure that the appliance has write privileges to the mount
Login to the appliance as emcsrv, then sudo su - to become root

Make a test directory that is world read/write
mkdir /test
chmod 777 /test

Mount the test file system (not solaris/linux NFS server specific)

mount -t nfs 10.10.10.5:/backups /test

Check to ensure you can write to the directory

cd /test
touch testfile

This should create a file with no error.  If you receive an error,
stop and correct before continuing problem.

If this works, umount the test file system

cd /
umount /test

Now perform the backup in the operations console, same assumptions as above

NOTE: You should not mount the NFS server manually on the appliance.
It is done automatically through a temp autofs for you when execute backups
over NFS from the console.

To setup console backup:

Log into the operations console
Maintenance->Backups->Configure Backup and Restore
For Backup Location Type, select the radial for Remote NFS (Network File Server)
Remote NFS (Network File Server): 10.10.10.5
Remote Path: /backups

Save.

Now execute your backup in the Operations console Maintenance->Backups->Create backup

 

 

Legacy Article IDa57288

Attachments

    Outcomes