In Apsara File Storage NAS, each permission group represents a whitelist. You can add rules to a permission group to allow access from specific IP addresses or CIDR blocks to a file system. You can also grant different access permissions to different IP addresses or CIDR blocks.
Background information
After you activate NAS, a permission group named "CLASSIC default permission group (all allowed)" or a permission group named "VPC default permission group (all allowed)" is created. The default permission group allows read and write access from all IP addresses to a file system in the classic network or in a virtual private cloud (VPC). No limits are specified for Linux system users. You cannot delete or modify the default permission group.
Limits
- You can use each Alibaba Cloud account to create up to 20 file systems in a region.
- You can add up to 300 rules to each permission group.
Create a permission group and add rules to the permission group
- Log on to the NAS console.
- Creates a permission group.
- Add rules to the permission group.
What to do next
On the Permission Group page, you can perform the following operations.
Operation | Description |
---|---|
View the permission groups and the details of the permission groups | View the permission groups in a region and the details of these permission groups. The details include the network type, number of rules, and number of attached file systems. |
Modify a permission group | Find the permission group and click Edit in the Actions column to modify the description of the permission group. |
Delete a permission group | Find the permission group and click Delete in the Actions column to delete the permission group. |
View the list of rules | Find the permission group and click Manage Rules in the Actions column to view the rules in the permission group. |
Modify a rule | Click Manage Rules. On the page that appears, find the rule, and click Edit in the Actions column to modify the parameters. The parameters include Authorized Address, Read/Write Permissions, User Permissions, and Priority. |
Delete a rule | Click Manage Rules. On the page that appears, find the rule, and click Delete in the Actions column to delete the rule. |