Question & Answer
Question
Can EFS Filesystem be supported by NFS Exports?
Cause
This technote is able to guide you whether the EFS filesystems (https://www.ibm.com/docs/en/aix/7.2?topic=system-efs-encrypted-file) are supported by NFS exports.
Answer
NFS exports of EFS filesystems are not supported.
Due to the fact that: -
- The Encrypted Files System (EFS) enables individual users on the system to encrypt their data on J2 filesystem through their individual key stores. Also, file encryption information is further encrypted as users' and groups' public keys, and those encrypted keys would be stored in the file's Extended Attribute (EA).
-
Each J2 EFS-activated file is associated with a special Extended Attribute (EA) which contains EFS meta-data. The EA content is hidden from J2. Also, user's keystore password could be either tied to user’s login password to load keystore at the time of login or an alternate password to manually load the keystore and thus, the EFS filesystems cannot be exported through NFS, and cannot be locally mounted through NFS.
It would be a major enhancement to support and accomplish data encryption & decryption on NFS.
Related Information
[{"Type":"MASTER","Line of Business":{"code":"LOB08","label":"Cognitive Systems"},"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SWG10","label":"AIX"},"ARM Category":[{"code":"a8m0z000000cvyTAAQ","label":"Communication Applications-\u003ENFS\/NFSV4\/PCNFS"}],"ARM Case Number":"","Platform":[{"code":"PF002","label":"AIX"}],"Version":"All Versions"}]
Was this topic helpful?
Document Information
Modified date:
05 April 2023
UID
ibm16967219