NFS Export Options

Read-Only Hosts, subnets, and users that may mount the share as read-only, i.e., the share may only be read, not modified. Whether you can actually read individual file shares depends on permissions for the shared files themselves. If Everyone (i.e., *) is specified, anyone can mount the share read-only.

Read/Write permits the file share that is mounted to be readable and writable depending on the permissions on the underlying file. If "Everyone" is chosen for Read-Only, setting a host(s) and/or subnet(s) here will override the read-only setting for the hosts(s)/subnet(s) specified.

Root allows you to run as root on the shares. Note that this does not imply that you can access the files for read/write or read-only, but you can read-only or read/write access the files if the host(s)/subnet(s) is specified in the read-only or read/write access list. Normally, the root user on the nfs client is mapped to an anon user on the server. The Full Control (Root) access list does not map the root user on the client to an anon user on the server. Instead, the root user on the client runs as the root user on the server.

Deny Hosts/subnets in this list may not mount shares from the server for read-only or for read-write. If Everyone (*) is in this list, no one can use the nfs share.

Security Mode configures the mode of NFS authentication. It can be either System Authentication (sys), Kerberos (krb*), or both. The default is System Authentication.

In order to use Kerberos modes the system itself must be configured with the KDC.

Hiding Descendant Datasets will prevent child datasets from being presented when accessing this dataset.

Data Security Labels allow support for Multi-Level Security (MLS) technology.