netapp

Manages resources on NetApp Cluster Data ONTAP devices.

Module Stats

26,075 downloads

14,453 latest version

2.3 quality score

Support the Puppet Community by contributing to this module

You are welcome to contribute to this module by suggesting new features, currency updates, or fixes. Every contribution is valuable to help ensure that the module remains compatible with the latest Puppet versions and continues to meet community needs. Complete the following steps:

Review the module’s contribution guidelines and any licenses. Ensure that your planned contribution aligns with the author’s standards and any legal requirements.
Fork the repository on GitHub, make changes on a branch of your fork, and submit a pull request. The pull request must clearly document your proposed change.

For questions about updating the module, contact the module’s author.

Version information

released Sep 20th 2017

Start using this module

Installation method

Add this module to your Puppetfile:

mod 'puppetlabs-netapp', '1.3.0'

Learn more about managing modules with a Puppetfile

Add this module to your Bolt project:

bolt module add puppetlabs-netapp

Learn more about using this module with an existing project

Manually install this module globally with Puppet module tool:

puppet module install puppetlabs-netapp --version 1.3.0

Documentation

puppetlabs/netapp — version 1.3.0 Sep 20th 2017

NetApp Data ONTAP device module

####Table of Contents

Overview
Module Description
Setup
Usage

Beginning with netapp
Classes and Defined Types
Types and Providers

Limitations

TODO

Development

Testing
Contributors

Overview

The NetApp Data ONTAP device module is designed to add support for managing NetApp Data ONTAP configuration using Puppet and its Network Device functionality.

The NetApp Data ONTAP device module has been written and tested against NetApp Data ONTAP 8.2 Cluster-mode.

Module Description

This module uses the NetApp Manageability SDK to manage various aspects of the NetApp Data ONTAP software.

The following items are supported:

Creation, modification and deletion of volumes, including auto-increment, snapshot schedules and volume options.
Creation, modification and deletion of QTrees.
Creation, modification and deletion of NFS Exports, including NFS export security.
Creation, modification and deletion of users, groups and roles.
Creation, modification and deletion of Quotas.
Creation of snapmirror relationships.
Creation of snapmirror schedules.

Setup

Requirements

Because we can not directly install Puppet on the NetApp Data ONTAP operating system, it must be managed through an intermediate proxy system running puppet device. The requirements for the proxy system are:

Puppet 3.7 or greater
NetApp Manageability SDK Ruby libraries
Faraday gem

The proxy system must be able to connect to the Puppet master (default port of 8140) and to the NetApp Data ONTAP (default port of 443).

NetApp Manageability SDK

Due to licensing, you must download the NetApp Manageability SDK separately. The NetApp Ruby libraries are contained within the NetApp Manageability SDK, which is available for download from NetApp NOW.

Please note that you need a NetApp NOW account to download the SDK.

Once you have downloaded and extracted the SDK, the Ruby SDK libraries must be copied into the module:

$ cp netapp-manageability-sdk-5.*/lib/ruby/NetApp/*.rb [module dir]/netapp/lib/puppet/netapp_sdk/

Device Proxy System Setup

To configure a Data ONTAP device, you must create a proxy system able to run puppet device and have a device.conf file that refers to the NetApp ONTAP system or vserver. Refer to the device.conf man page for information on the format of device.conf.

The netapp module can manage two different kinds of devices: Data ONTAP cluster operating system and Data ONTAP cluster vservers. The device type of the device.conf entry is always netapp.

For example, if you had a Data ONTAP operating system with the node management interface addressable by the DNS name of ontap01.example.com and credentials of admin & netapp123, the device.conf entry would be:

[ontap01.example.com]
type netapp
url https://admin:netapp123@ontap01.example.com

Note: The device certname must match the hostname of the node.

You can also specify a virtual server to operate on by providing the connection information for a physical system which is configured with the vserver and specify a path in the url that represents the name of your vserver. For example, if the above Data ONTAP node ontap01 is configured with a vserver called "vserver01," the device entry could be:

[vserver01.example.com]
type netapp
url https://admin:netapp123@ontap01.example.com/vserver01

Note: The device certname does not need to match the hostname of the node as with a system device entry.

You can place the device entries in the default ${confdir}/device.conf file or create a separate config file for each device. For example, the above examples could go in ${confdir}/device/ontap01.example.com.conf and ${confdir}/device/vserver01.example.com.conf. Device configurations in separate files must be specified by puppet device --deviceconfig /path/to/device-file.conf to be used by puppet device run.

Usage

Beginning with netapp

Continuing from the example in Device Proxy System Setup, we can define a node definition for ontap01.example.com to create a vserver with an aggregate of 6 disks and a LIF:

node 'ontap01.example.com' {
  netapp_aggregate { 'aggr1':
    ensure    => present,
    diskcount => '6',
  }
  netapp_vserver { 'vserver01':
    ensure          => present,
    rootvol         => 'vserver01_root',
    rootvolaggr     => 'aggr1',
    rootvolsecstyle => 'unix',
  }
  netapp_lif { 'vserver01_lif':
    ensure        => present,
    homeport      => 'e0c',
    homenode      => 'ontap01',
    address       => '10.0.207.5',
    vserver       => 'vserver01',
    netmask       => '255.255.255.0',
    dataprotocols => ['nfs'],
  }
}

Next we should create a node definition for the vserver with a volume that has export policies for NFS, and a qtree on the volume:

node 'vserver01.example.com' {
  netapp_export_policy { 'nfs_exports':
    ensure => present,
  }
  netapp_export_rule { 'nfs_exports:1':
    ensure            => present,
    clientmatch       => '10.0.0.0/8',
    protocol          => ['nfs'],
    superusersecurity => 'none',
    rorule            => ['sys','none'],
    rwrule            => ['sys','none'],
  }
  netapp_volume { 'vserver01_root':
    exportpolicy => 'nfs_exports',
  }
  netapp_volume { 'nfsvol':
    ensure       => present,
    aggregate    => 'aggr1',
    initsize     => '200g',
    exportpolicy => 'nfs_exports',
    junctionpath => '/nfsvol',
  }
  netapp_qtree { 'qtree1':
    ensure => present,
    volume => 'nfsvol',
  }
  netapp_nfs { 'vserver01':
    ensure => present,
    state  => 'on',
    v3     => 'disabled',
    v40    => 'enabled',
  }
}

If the device configuration are both in $confdir/device.conf, they can now be configured by running puppet device --verbose --user=root.

If the device configurations are is separate files, you can use the following command to run puppet against a single device at a time:

puppet device --verbose --user=root --deviceconfig /etc/puppet/device/ontap01.example.com.conf

Classes and Defined Types

None as of this first release. Common operations may be encapsulated in defined resource types.

Types and Providers

netapp_aggregate netapp_cluster_id netapp_cluster_peer netapp_export_policy netapp_export_rule netapp_group netapp_ldap_client netapp_license netapp_lif netapp_lun netapp_lun_map netapp_nfs netapp_notify netapp_qtree netapp_quota netapp_role netapp_security_login netapp_security_login_role netapp_snapmirror netapp_snapmirror_schedule netapp_user netapp_volume netapp_vserver netapp_vserver_option netapp_vserver_sis_config

Type: netapp_aggregate

Manage Netapp Aggregate creation, modification and deletion. [Family: cluster]

Parameters

All parameters, except where otherwise noted, are optional.

`blocktype`

The indirect block format for the aggregate. Default value: '64_bit'.

Valid values are 64_bit, 32_bit.

`checksumstyle`

Aggregate checksum style. Default value: 'block'.

Valid values are advanced_zoned, block.

`diskcount`

Number of disks to place in the aggregate, including parity disks.

`disksize`

Disk size with unit to assign to aggregate.

`disktype`

Disk types to use with aggregate. Only required when multiple disk types are connected.

Valid values are ATA, BSAS, EATA, FCAL, FSAS, LUN, MSATA, SAS, SATA, SCSI, SSD, XATA, XSAS.

`ensure`

The basic state that the resource should be in.

Valid values are present, absent.

`groupselectionmode`

How should Data ONTAP add disks to raidgroups.

Valid values are last, one, new, all.

`ismirrored`

Should the aggregate be mirrored (have two plexes). Defaults to false.

Valid values are true, false.

`name`

The aggregate name

`nodes`

Target nodes to create aggregate. May be an array.

`raidsize`

Maximum number of disks in each RAID group in aggregate.

Valid values are between 2 and 28

`raidtype`

Raid type to use in the new aggregate. Default: raid4.

Valid values are raid4, raid_dp.

`state`

The aggregate state. Default value: 'online'.

Valid values are online, offline.

`striping`

Should the new aggregate be striped? Default: not_striped.

Valid values are striped, not_striped.

Type: netapp_cluster_id

Manage Netapp Cluster ID. [Family: cluster]

Parameters

`contact`

The cluster contact

`ensure`

The basic property that the resource should be in.

Valid values are present, absent.

`location`

The cluster location

`name`

The cluster name

Type: netapp_cluster_peer

Manage Netapp Cluster Peering. [Family: cluster]

Parameters

`ensure`

The basic property that the resource should be in.

Valid values are present, absent.

`name`

The cluster peer name. Must match the remote cluster name.

`password`

Cluster peer password.

`peeraddresses`

Cluster peer address array

`timeout`

Cluster operation timeout. Must be between 25 and 180. Defaults to: 25.

`username`

Cluster peer username.

Type: netapp_export_policy

Manage Netapp CMode Export Policy creation and deletion. [Family: vserver]

Parameters

`ensure`

The basic property that the resource should be in.

Valid values are present, absent.

`name`

The export policy name.

Type: netapp_export_rule

Manage Netapp CMode Export rule creation, modification and deletion. [Family: vserver]

Parameters

`allowdevenabled`

Should the NFS server allow creation of devices. Defaults to true.

Valid values are true, false.

`allowsetuid`

Should the NFS server allow setuid. Defaults to true.

Valid values are true, false.

`anonuid`

User name or ID to map anonymous users to. Defaults to 65534.

`clientmatch`

Required. Client match specification for the export rule. May take an fqdn, IP address, IP hyphenated range, or CIDR notation.

`ensure`

The basic state that the resource should be in.

Valid values are present, absent.

`exportchownmode`

Change ownership mode. Defaults to 'restricted'.

Valid values are restricted, unrestricted.

`name`

The export policy name and index. Must take the form of policy_name:rule_number where the rule number is an integer and the policy name is an existing export policy.

`ntfsunixsecops`

Ignore/Fail Unix security operations on NTFS volumes. Defaults to 'fail'.

Valid values are ignore, fail.

`protocol`

Client access protocol. Defaults to 'any'.

Valid values are any, nfs2, nfs3, nfs, cifs, nfs4, flexcache.

`rorule`

Property to configure read only rules. Defaults to 'any'.

Valid values are any, none, never, never, krb5, ntlm, sys, spinauth.

`rwrule`

Property to configure read write rules. Defaults to 'any'.

Valid values are any, none, never, never, krb5, ntlm, sys, spinauth.

`superusersecurity`

Superuser security flavor. Defaults to 'any'.

Valid values are any, none, never, never, krb5, ntlm, sys, spinauth.

Type: netapp_group

Manage Netapp Group creation, modification and deletion.

Parameters

`comment`

Group comment

`ensure`

The basic property that the resource should be in.

Valid values are present, absent.

`groupname`

(Namevar: If omitted, this parameter's value defaults to the resource's title.)

The group name.

`roles`

List of roles for this group. Comma separate multiple values.

Type: netapp_igroup

Manage Netapp initiator groups. [Family: vserver]

Parameters

`name`

Namevar: If omitted, this parameter's value defaults to the resource's title.

Initiator group name.

`force`

Forcibly remove the initiator even if there are existing LUNs mapped to this initiator group. Best practice is to attempt to unmap all the luns associated with a group before removing the initiator. Default to false

`group_type`

Initiator group type.

Valid values are fcp, iscsi, mixed.

`members`

An array of initiator WWPNs or aliases to be members of the initiator group.

`os_type`

OS type of the initiators within the group. The os type applies to all initiators within the group and governs the finer details of SCSI protocol interaction with these initiators. Required.

Valid values are solaris, windows, hpux, aix, linux, netware, vmware, openvms, xen, hyper_v.

`portset`

The name of the portset to which the igroup should be bound. A value of false will unbind the portset.

Valid values are a string or false

Type: netapp_iscsi

Manage Netapp ISCSI service. There may only ever be one of these declared per VServer. [Family: vserver]

Parameters

`svm`

Namevar: If omitted, this parameter's value defaults to the resource's title.

ISCSI service SVM.

`target_alias`

ISCSI WWPN alias. May be any string that is a valid ISCSI target WWPN.

`state`

ISCSI service state.

Valid values are on, off.

Type: netapp_iscsi_security

Manage Netapp ISCSI initiator (client) authentication. [Family: vserver]

Parameters

`initiator`

Namevar: If omitted, this parameter's value defaults to the resource's title.

ISCSI initiator name.

`auth_type`

ISCSI initiator authentication type.

Valid values are chap, none, deny.

`radius`

ISCSI radius CHAP setting.

Valid values are true, false.

`username`

ISCSI initiator inbound CHAP username.

`password`

ISCSI initiator inbound CHAP password.

Valid values are 12-16 hexidecimal digits.

`outbound_username`

ISCSI initiator outbound CHAP username.

`outbound_password`

ISCSI initiator outbound CHAP password.

Valid values are 12-16 hexidecimal digits.

Type: netapp_license

Manage Netapp Licenses. Only supported by ONTAP 8.2 and newer. [Family: cluster] This allows the removal or addition of a license. eg netapp_license { 'snaprestore' : ensure => present, codes => "secret license code", }

Parameters

`package`

(Namevar:) Package Possible values: base - Cluster Base License, nfs - NFS License, cifs - CIFS License, iscsi - iSCSI License, fcp - FCP License, snaprestore - SnapRestore License, snapmirror - SnapMirror License, flexclone - FlexClone License, snapvault - SnapVault License, snaplock - SnapLock License, snapmanagersuite - SnapManagerSuite License, snapprotectapps - SnapProtectApp License, v_storageattach - Virtual Attached Storage License

`codes`

The license code to be added

`ensure`

The basic property that the resource should be in.

Valid values are present, absent.

Type: netapp_ldap_client

Manage Netapp LDAP client configuration for the cluster. [Family: vserver]

Parameters

`name`

(Namevar: If omitted, this parameter's value defaults to the resource's title.)

The name of the LDAP client configuration.

`ensure`

The basic property that the resource should be in.

Valid values are present, absent.

`ad_domain`

The Active Directory Domain Name for this LDAP configuration. The option is ONLY applicable for configurations using Active Directory LDAP servers.The Active Directory Domain Name for this LDAP configuration. The option is ONLY applicable for configurations using Active Directory LDAP servers.

`allow_ssl`

Allows the use of SSL for the TLS Handshake Protocol over the LDAP connections. The default value is false.

`base_dn`

Indicates the starting point for searches within the LDAP directory tree. If omitted, searches will start at the root of the directory tree.

`base_scope`

This indicates the scope for LDAP search. If omitted, this parameter defaults to 'subtree'. Possible values: base - Searches only the base directory entry, onelevel - Searches the immediate subordinates of the base directory entry, subtree - Searches the base directory entry and all its subordinates

`bind_as_cifs_server`

If set, the cluster will use the CIFS server's credentials to bind to the LDAP server. If omitted, this parameter defaults to 'true' if the configuration uses Active Directory LDAP and defaults to 'false' otherwise.

`bind_dn`

The Bind Distinguished Name (DN) is the LDAP identity used during the authentication process by the clients. This is required if the LDAP server does not support anonymous binds. This field is not used if 'bind-as-cfs-server' is set to 'true'. Example : cn=username,cn=Users,dc=example,dc=com

`bind_password`

The password to be used with the bind-dn.

`group_dn`

The Group Distinguished Name (DN), if specified, is used as the starting point in the LDAP directory tree for group lookups. If not specified, group lookups will start at the base-dn.

`group_scope`

This indicates the scope for LDAP search when doing group lookups. Possible values: base - Searches only the base directory entry, onelevel - Searches the immediate subordinates of the base directory entry, subtree - Searches the base directory entry and all its subordinates

`is_netgroup_byhost_enabled`

This indicates whether netgroup.byhost map should be queried for lookups

`min_bind_level`

The minimum authentication level that can be used to authenticate with the LDAP server. If omitted, this parameter defaults to 'sasl'. Possible values: anonymous - Anonymous bind, simple - Simple bind, sasl - Simple Authentication and Security Layer (SASL) bind

`netgroup_byhost_dn`

The Netgroup Distinguished Name (DN), if specified, is used as the starting point in the LDAP directory tree for netgroup byhost lookups. If not specified, netgroup byhost lookups will start at the base-dn.

`netgroup_byhost_scope`

This indicates the scope for LDAP search when doing netgroup byhost lookups. Possible values: base - Searches only the base directory entry, onelevel - Searches the immediate subordinates of the base directory entry, subtree - Searches the base directory entry and all its subordinates

`netgroup_dn`

The Netgroup Distinguished Name (DN), if specified, is used as the starting point in the LDAP directory tree for netgroup lookups. If not specified, netgroup lookups will start at the base-dn.

`netgroup_scope`

This indicates the scope for LDAP search when doing netgroup lookups. Possible values: base - Searches only the base directory entry, onelevel - Searches the immediate subordinates of the base directory entry, subtree - Searches the base directory entry and all its subordinates

`preffered_ad_servers`

Preferred Active Directory (AD) Domain controllers to use for this configuration. This option is ONLY applicable for configurations using Active Directory LDAP servers

`query_timeout`

Maximum time in seconds to wait for a query response from the LDAP server. The default for this parameter is 3 seconds.

`schema`

LDAP schema to use for this configuration.

`servers`

List of LDAP Server IP addresses to use for this configuration. The option is NOT applicable for configurations using Active Directory LDAP servers.

`tcp_port`

The TCP port on the LDAP server to use for this configuration. If omitted, this parameter defaults to 389.

`use_start_tls`

This indicates if start_tls will be used over LDAP connections.

`user_dn`

The User Distinguished Name (DN), if specified, is used as the starting point in the LDAP directory tree for user lookups. If this parameter is omitted, user lookups will start at the base-dn.

`user_scope`

This indicates the scope for LDAP search when doing user lookups. Possible values: base - Searches only the base directory entry, onelevel - Searches the immediate subordinates of the base directory entry, subtree - Searches the base directory entry and all its subordinates

Type: netapp_lif

Manage Netapp Logical Inteface (LIF) creation, modification and deletion. [Family: cluster]

Parameters

`address`

LIF IP address. Required

`administrativestatus`

LIF administratative status. Defaults to: 'up'.

Valid values are up, down.

`comment`

LIF comment.

`dataprotocols`

LIF data protocols.

Valid values are nfs, cifs, iscsi, fcp, fcache, none.

`dnsdomainname`

LIF dns domain name.

`ensure`

The basic property that the resource should be in.

Valid values are present, absent.

`failovergroup`

LIF failover group name.

`failoverpolicy`

LIF failover policy. Defaults to: 'nextavail'.

Valid values are nextavail, priority, disabled.

`firewallpolicy`

LIF firewall policy. Default is based on the port role.

Valid values are mgmt, cluster, intercluster, data.

`homenode`

Required. LIF home node.

`homeport`

Required. LIF home port.

`interfacename`

Namevar: If omitted, this parameter's value defaults to the resource's title. LIF name.

`isautorevert`

Should the LIF revert to its home node. Defaults to: false.

Valid values are true, false.

`netmask`

LIF netmask. Required if netmasklength is not specified.

`netmasklength`

LIF netmask length. Required if netmask is not specified.

`role`

LIF Role. Defaults to: 'data'.

Valid values are undef, cluster, data, node_mgmt, intercluster, cluster_mgmt.

`routinggroupname`

LIF Routing group. Valid format is {dcn}{ip address}/{subnet}.

`usefailovergroup`

Whether the failover group should be automatically created. Defaults to: 'disabled'.

Valid values are disabled, enabled, system_defined.

`vserver`

Required. LIF Vserver name.

Type: netapp_lun

Manage Netap Lun creation, modification and deletion. [Family: vserver]

Parameters

`ensure`

The basic property that the resource should be in.

Valid values are present, absent.

`lunclass`

Lun class. Default value = 'regular'. Possible values: 'regular', 'protectedendpoint', 'vvol'.

Valid values are regular, protectedendpoint, vvol.

`ostype`

Lun OS Type. Defaults to 'image'. Possible values: 'image', 'aix', 'hpux', 'hyper_v', 'linux', 'netware', 'openvms', 'solaris', 'solaris_efi', 'vmware', 'windows', 'windows_2008', 'windows_gpt'

Valid values are image, aix, hpux, hyper_v, linux, netware, openvms, solaris, solaris_efi, vmware, windows, windows_2008, windows_gpt.

`path`

(Namevar: If omitted, this parameter's value defaults to the resource's title.)

Lun path

`prefixsize`

Lun prefix stream size in bytes. Default value is based on ostype. Not required for 'image' ostype. Must be a multiple of 512 bytes.

`qospolicygroup`

QOS Policy group

`size`

Lun size. Can either be specified in bytes, or specify one of the following size units: [mgt].

`spaceresenabled`

Enable Lun space reservation? Defaults to true.

Valid values are true, false.

`force`

whether or not to force a resize, when shrinking the lun.

Valid values are true, false.

`state`

Lun state. Default value: 'online'. Possible values: 'online', 'offline'.

Valid values are online, offline.

Type: netapp_lun_map

Manage Netap Lun map creation and deletion. [Family: vserver]

Parameters

`ensure`

The basic property that the resource should be in.

Valid values are present, absent.

`ensure`

Initiator group to map to.

`lunmap`

(Namevar: If omitted, this parameter's value defaults to the resource's title.)

Lun map - Composite key of format {path}:{lun-id}.

Type: netapp_nfs

Manage NetApp NFS service. [Family: vserver]

Parameters

`vserver`

Namevar: If omitted, this parameter's value defaults to the resource's title. NFS service SVM. This resource can only be applied to vservers, so the title is redundant.

`state`

NFS Service State

Valid values are on, off.

`v3`

Control NFS v3 access

Valid values are enabled, disabled.

`v40`

Control NFS v4.0 access

Valid values are enabled, disabled.

`v41`

Control NFS v4.1 access

Valid values are enabled, disabled.

Type: netapp_notify

Sends an arbitrary message to the agent run-time log.

Parameters

`message`

The message to be sent to the log.

`message`

An arbitrary tag for your own reference; the name of the message.

`message`

Whether to show the full object path. Defaults to false.

Valid values are true, false.

Type: netapp_qtree

Manage Netapp Qtree creation, modification and deletion. [Family: vserver]

Parameters

`ensure`

The basic property that the resource should be in.

Valid values are present, absent.

`exportpolicy`

The export policy with which the qtree is associated. (Note: Not yet implemented)

`name`

The qtree name.

`volume`

Required.. The volume to create the qtree against.

Type: netapp_quota

Manage NetApp quota entries. Please note that NetApp identifies a quota entry uniquely by the type, target, volume, and qtree. This type on the other hand has to uniquely identify a quota entry only by its target. This means that you cannot manage two quota entries for the same user (username = quota-target) but for different trees. As a result this type is best at managing tree quotas

Example:

Limit qtree1 on vol1 to 10G

netapp_quota { '/vol/vol1/qtree1':
  ensure    => present,
  type      => 'tree',
  volume    => 'vol1',
  disklimit => '10G',
}

Limit user bob to consume 2G on qtree1. Note that you cannot define multiple quotas for user bob:

netapp_quota { 'bob':
  ensure    => present,
  type      => 'user',
  qtree     => 'qtree1',
  volume    => 'vol1',
  disklimit => '2048M',
}

Make sure the following restrictions apply in your environment before using this type:

every quota target has to be unique
quota entries must not contain any special characters that would require quotation

Parameters

`disklimit`

The amount of space that the target can consume, e.g. 100M or 2G. You can also specify absent to make sure there is no limit.

Valid values are absent. Values can match /^[0-9]+[KMGT]$/i.

`ensure`

The basic property that the resource should be in.

Valid values are present, absent.

`filelimit`

The number of files that the target can have. You can also specify absent to make sure there is no limit.

Valid values are absent. Values can match /^[0-9]+[KMGT]?$/i.

`name`

The name of the quota target. Depending on the quota type this can be a pathname (e.g. /vol/vol1/qtree1), a username, or a group

`qtree`

The qtree that the quota resides on. This is only relevant for user and group quotas

`softdisklimit`

The amount of space the target has to consume before a message is logged. You can also specify absent to make sure there is no limit.

Valid values are absent. Values can match /^[0-9]+[KMGT]$/i.

`softfilelimit`

The number of files the target has to own before a message is logged. You can also specify absent to make sure there is no limit

Valid values are absent. Values can match /^[0-9]+[KMGT]?$/i.

`threshold`

The amount of disk space the target has to consume before a message is logged. Set to absent to make sure the treshold is unlimited

Valid values are absent. Values can match /^[0-9]+[KMGT]$/i.

`type`

The type of the quota. You can define tree, user or group here

Valid values are tree, user, group.

`volume`

The name of the volume the quota resides on

Values can match /^\w+$/.

Type: netapp_role

Manage Netapp Role creation, modification and deletion. [Family: cluster]

Parameters

`capabilities`

List of capabilities for this role. Comma separate multiple values.

`comment`

Role comment

`ensure`

The basic property that the resource should be in.

Valid values are present, absent.

`rolename`

(Namevar: If omitted, this parameter's value defaults to the resource's title.)

The role name.

Type: netapp_sis_policy

Manage Netapp sis policies. [Family: vserver]

Parameters

`type`

The type of policy.

Valid values are threshold, scheduled.

`job_schedule`

Job schedule name. E.g., 'daily'.

`duration`

Job duration in hours.

`enabled`

Manage whether the sis policy is enabled.

Valid values are true, false, yes, no, enabled, disabled

`comment`

Comment for the policy.

`qos_policy`

QoS policy name. E.g., 'best_effort'

`changelog_threshold_percent`

Percentage at which the changelog will be processed for a threshold type of policy, tested once each hour

Type: netapp_security_login

A user account associated with the specified application and authentication method. A new user account can be created with user name as the Active Directory group name. This user account gives access to users belonging to the specified Active Directory group. [Family: cluster]

Parameters

`comment`

Comments for the user account. The length of comment should be less than or equal to 128 charaters.

`ensure`

The basic property that the resource should be in.

Valid values are present, absent.

`is_locked`

Whether the login is locked'.

The valid values for are 'true' or 'false'.

`name`

(Namevar: If omitted, this parameter's value defaults to the resource's title.) A composite key made up from application:authentication_method:username:vserver eg ssh:password:vsadmin:vserver01

`password`

Password for the user account. This is ignored for creating snmp users. This is required for creating non-snmp users.

`role_name`

Required. The default value is 'admin' for Admin vserver and 'vsadmin' for data vserver. This field is required.

Type: netapp_security_login_role

Manages a login role. [Family: cluster]

Parameters

`access_level`

Access level for the role. Possible values: 'none', 'readonly', 'all'. The default value is 'all'.

`ensure`

The basic property that the resource should be in.

Valid values are present, absent.

`name`

(Namevar: If omitted, this parameter's value defaults to the resource's title.) A composite key made up from command_directory_name:role_name:vserver eg ssh:password:vsadmin:vserver01

`role_query`

A query for the role. The query must apply to the specified command or directory name. Example: The command is 'volume show' and the query is '-volume vol1'. The query is applied to the command resulting in populating only the volumes with name vol1.

Type: netapp_snapmirror

Manage Netapp Snapmirror creation, modification and deletion. [Family: cluster, vserver]

Parameters

`destination_location`

(Namevar: If omitted, this parameter's value defaults to the resource's title.)

The destination location.

`destination_snapshot`

The destination snapshot.

`ensure`

Netapp Snapmirror resource state. Valid values are: present, absent.

Valid values are present, absent.

`max_transfer_rate`

The max transfer rate, in KB/s. Defaults to unlimited.

`relationship_type`

Specifies the type of the SnapMirror relationship. An extended data protection relationship with a policy of type vault is equivalent to a 'vault' relationship. On Data ONTAP 8.3.1 or later, in the case of a Vserver SnapMirror relationship the type of the relationship is always data_protection. Possible values: data_protection , load_sharing , vault , restore , transition_data_protection , extended_data_protection

`source_location`

The source location.

`source_snapshot`

The source snapshot name

netapp_snapmirror_schedule

Manage Netapp Snapmirror schedule creation, modification and deletion.

Parameters

`connection_mode`

The connection mode to use between source and destination.

Valid values are inet, inet6.

`days_of_month`

The days of month for schedule to be set. Can be single value between 1 and 31, comma seperated list (1,7,14), range (2-10), range with divider (1-30/7), * to match all, or - to match none.

`days_of_week`

The days of week for schedule to be set. Can be single value between 0 and 6, inclusive, with 0 being Sunday, or must be name of the day (e.g. Tuesday), comma sepeated list (1,3,5), range (2-5), * to match all, or - to match none.

`destination_location`

(Namevar: If omitted, this parameter's value defaults to the resource's title.)

The destination location.

`ensure`

Netapp Snapmirror schedule resource state. Valid values are: present, absent.

Valid values are present, absent.

`hours`

The hour(s) in the day for schedule to be set. Can be single value between 1 and 24, comma seperated list (1,7,14), range (2-10), range with divider (1-24/3), * to match all, or - to match none.

`max_transfer_rate`

The max transfer rate, in KB/s. Defaults to unlimited.

`minutes`

The minutes in the hour for schedule to be set. Can be single value between 0 and 59, comma seperated list (1,7,14), range (2-10), range with divider (1-59/3), * to match all, or - to match none.

`restart`

The restart mode to use when transfer interrupted. Allowed values are: always, never and restart.

Valid values are always, never, default.

`source_location`

The source location.

Type: netapp_user

Manage Netapp User creation, modification and deletion.

Parameters

`comment`

User comment

`ensure`

The basic property that the resource should be in.

Valid values are present, absent.

`fullname`

The user full name.

`groups`

List of groups for this user account. Comma separate multiple values.

`passmaxage`

Number of days that this user's password can be active before the user must change it. Default value is 2^31-1 days.

`passminage`

Number of days that this user's password must be active before the user can change it. Default value is 0.

`password`

The user password. Minimum length is 8 characters, must contain at-least one number.

`status`

Status of user account. Valid values are: enabled, disabled and expired. Cannot be modified via API.

Valid values are enabled, disabled, expired.

`username`

(Namevar: If omitted, this parameter's value defaults to the resource's title.)

The user username.

Type: netapp_volume

Manage Netapp Volume creation, modification and deletion. [Family: vserver]

Parameters

`aggregate`

Required.. The aggregate this volume should be created in.

`autosize`

Whether volume autosize should be grow, grow/shrink, or off.

Valid values are off, grow, grow_shrink.

`ensure`

The basic state that the resource should be in.

Valid values are present, absent.

`exportpolicy`

The export policy with which the volume is associated.

`group_id`

The UNIX group ID for the volume.

`initsize`

The initial volume size. Required. Valid format is /[0-9]+[kmgt]/.

`junctionpath`

The fully-qualified pathname in the owning vserver's namespace at which a volume is mounted.

Valid values are absolute file paths or false.

`languagecode`

The language code this volume should use.

Valid values are C, ar, cs, da, de, en, en_US, es, fi, fr, he, hr, hu, it, ja, ja_v1, ko, no, nl, pl, pt, ro, ru, sk, sl, sv, tr, zh, zh_TW.

`name`

The volume name. Valid characters are a-z, 1-9 & underscore.

`options`

The volume options hash. Key/value pairs are configured via volume-option-info. Only valid in vserver context.

Example:

netapp_volume { 'nfsvol':
  ensure       => 'present',
  autosize     => 'off',
  exportpolicy => 'nfs_exports',
  initsize     => '2g',
  junctionpath => '/nfsvol',
  state        => 'online',
  options      => {
    'actual_guarantee'          => 'volume',
    'convert_ucode'             => 'on',
    'create_ucode'              => 'on',
    'effective_guarantee'       => 'volume',
    'extent'                    => 'off',
    'fractional_reserve'        => '100',
    'fs_size_fixed'             => 'off',
    'guarantee'                 => 'volume',
    'ignore_inconsistent'       => 'off',
    'max_write_alloc_blocks'    => '0',
    'maxdirsize'                => '52346',
    'minra'                     => 'off',
    'no_atime_update'           => 'off',
    'no_i2p'                    => 'off',
    'nosnap'                    => 'off',
    'nosnapdir'                 => 'off',
    'nvfail'                    => 'off',
    'read_realloc'              => 'off',
    'root'                      => 'false',
    'schedsnapname'             => 'create_time',
    'snapmirrored'              => 'off',
    'snapshot_clone_dependency' => 'off',
    'try_first'                 => 'volu me_grow',
  },
}
  snapreserve  => '5',
  snapschedule => {'days' => '2', 'hours' => '6', 'minutes' => '0', 'weeks' => '1', 'which-hours' => '0:05, 1:05, 2:05, 3:05, 4:05, 5:05, 6:05, 7:05, 8:05, 9:05, 10:05, 11:05, 12:05, 13:05, 14:05, 15:05,
      16:05, 17:05, 18:05, 19:05, 20:05, 21:05, 22:05, 23:05', 'which-minutes' => ''},

`snapreserve`

The percentage of space to reserve for snapshots.

`snapschedule`

The volume snapshot schedule, in a hash format. Valid keys are: 'minutes', 'hours', 'days', 'weeks', 'which-hours', 'which-minutes'.

Example:

netapp_volume { 'nfsvol':
  ensure       => 'present',
  autosize     => 'off',
  exportpolicy => 'nfs_exports',
  initsize     => '2g',
  junctionpath => '/nfsvol',
  state        => 'online',
  snapreserve  => '5',
  snapschedule => {
    'days'          => '2',
    'hours'         => '6',
    'minutes'       => '0',
    'weeks'         => '1',
    'which-hours'   => '0:05, 12:05',
    'which-minutes' => '',
  },
}

`spaceres`

The space reservation mode.

Valid values are none, file, volume.

`state`

The volume state.

Valid values are online, offline, restricted.

`unix_permissions`

Unix permission bits in octal string format.It's similar to Unix style permission bits: In Data ONTAP 7-mode, the default setting of '0755' gives read/write/execute permissions to owner and read/execute to group and other users. In Data ONTAP Cluster-Mode, for security style 'mixed' or 'unix', the default setting of '0755' gives read/write/execute permissions to owner and read/execute permissions to group and other users. For security style 'ntfs', the default setting of '0000' gives no permissions to owner, group and other users. It consists of 4 octal digits derived by adding up bits 4, 2 and 1. Omitted digits are assumed to be zeros. First digit selects the set user ID(4), set group ID (2) and sticky (1) attributes. The second digit selects permission for the owner of the file: read (4), write (2) and execute (1); the third selects permissions for other users in the same group; the fourth for other users not in the group.

`user_id`

The UNIX user ID for the volume.

`volume_type`

The type of the volume to be created. Possible values: rw - read-write volume (default setting), ls - load-sharing volume, dp - data-protection volume, dc - data-cache volume (FlexCache)

Type: netapp_vserver

Manage Netapp Vserver creation, modification and deletion. [Family: cluster, vserver]

Parameters

`aggregatelist`

Vserver aggregate list. May be an array.

`allowedprotos`

Vserver allowed protocols.

Valid values are nfs, cifs, fcp, iscsi, ndmpd.

`comment`

Vserver comment.

`ipspace`

IPspace name.

`ensure`

The basic property that the resource should be in.

Valid values are present, absent.

`language`

Vserver language. Defaults to c.UTF-8

Valid values are c, c.UTF-8, ar, cs, da, de, en, en_us, es, fi, fr, he, hr, hu, it, ja, ja_v1, ja_jp.pck, ja_jp.932, ja_jp.pck_v2, ko, no, nl, pl, pt, ro, ru, sk, sl, sv, tr, zh, zh.gbk, zh_tw.

`maxvolumes`

Vserver maximum allowed volumes.

`name`

The vserver name

`namemappingswitch`

Vserver name mapping switch. Defaults to 'file'.

Valid values are file, ldap.

`nameserverswitch`

Vserver name server switch.

Valid values are file, ldap, nis.

`quotapolicy`

Vserver quota policy.

`rootvol`

Required. The vserver root volume.

`rootvolaggr`

Required. Vserver root volume aggregate.

`rootvolsecstyle`

Required. Vserver root volume security style.

Valid values are unix, ntfs, mixed, unified.

`snapshotpolicy`

Vserver snapshot policy.

`state`

The vserver state.

Valid values are stopped, running.

Type: netapp_vserver_option

Manage Netapp Vserver option modification. [Family: cluster, vserver]

Parameters

`ensure`

The basic property that the resource should be in.

Valid values are present, absent.

`name`

The vserver option name.

`value`

The vserver option value.

Type: netapp_sis_config

Manage Netapp Vserver sis config modification. [Family: vserver]

Parameters

`compression`

Enable compression on the sis volume.

Valid options: true, false.

`enabled`

Enable sis on a volume.

Valid options: true, false.

`ensure`

The basic property that the resource should be in.

Valid values are present, absent.

`idd`

Enables file level incompressible data detection and quick check incompressible data detection for large files.

Valid options: true, false.

`inline_compression`

Enable inline compression on the sis volume.

Valid options: true, false.

`path`

(Namevar: If omitted, this parameter's value defaults to the resource's title.) The full path of the sis volume, /vol/<vol_name>.

`policy`

The sis policy name to be attached to the volume.

`quick_check_fsize`

Quick check file size for Incompressible Data Detection. Accepts integers

Values can match /^\d+$/.

`sis_schedule`

The schedule string for the sis operation.

Accepts the following formats:

day_list[@hour_list]
hour_list[@day_list]
-
auto
manual

TODO

The following items are yet to be implemented:

Data Fabric Manager support
Support adding/deleting/modifying cifs shares
LDAP and/or AD configuration
QA remaining resources

Development

The following section applies to developers of this module only.

Testing

You will need to install the NetApp Manageability SDK Ruby libraries for most of the tests to work.

How to obtain these files is detailed in the NetApp Manageability SDK section above.

Types in this module release

netapp_export_policy

netapp_vserver_cifs_domain_password_schedule

Manage Netapp vserver cifs domain password schedule. [Family: vserver]

Parameters
name	The Vserver name
provider

Properties
schedule_randomized_minute	Minutes within which schedule start can be randomized

Providers
cmode

netapp_snapmirror

Manage Netapp Snapmirror creation, modification and deletion. [Family: cluster, vserver]

Parameters
destination_location	The destination location.
destination_snapshot	The destination snapshot.
ensure	Netapp Snapmirror resource state. Valid values are: present, absent.
provider
source_snapshot	The source snapshot name

Properties
max_transfer_rate	The max transfer rate, in KB/s. Defaults to unlimited.
relationship_type	Specifies the type of the SnapMirror relationship. An extended data protection relationship with a policy of type vault is equivalent to a 'vault' relationship. On Data ONTAP 8.3.1 or later, in the case of a Vserver SnapMirror relationship the type of the relationship is always data_protection. Possible values: data_protection , load_sharing , vault , restore , transition_data_protection , extended_data_protection
source_location	The source location.

Providers
cmode
sevenmode

netapp_qtree

Manage Netapp Qtree creation, modification and deletion. [Family: vserver]

Parameters
ensure
name	The qtree name.
provider

Properties
exportpolicy	The export policy with which the qtree is associated.
qtname	The qtname to create.
volume	The volume to create qtree against.

Providers
cmode
sevenmode

netapp_sis_policy

Manage Netapp sis policy modification. [Family: vserver]

Parameters
ensure
name	The efficiency policy name
provider

Properties
changelog_threshold_percent	Percentage at which the changelog will be processed for a threshold type of policy, tested once each hour
comment	Comment for the policy
duration	Job duration in hours.
enabled
job_schedule	Job schedule name. Eg: 'daily'
qos_policy	QoS Policy Name. Eg: 'best_effort'
type	Policy type.

Providers
cmode

netapp_iscsi

Properties
state	ISCSI service state.
target_alias	ISCSI WWPN Alias

netapp_ldap_config

Create a new association between a Lightweight Directory Access Protocol (LDAP) client configuration and a Vserver. A Vserver can have only one client configuration associated with it. [Family: vserver]

Parameters
ensure
name	The name of an existing Lightweight Directory Access Protocol (LDAP) client configuration. The LDAP client configuration can be created using the ldap-client-create API. The ldap-client-get-iter API can be used to retrieve the list of available LDAP client configurations for the cluster.
provider

Properties
client_enabled	If true, the corresponding Lightweight Directory Access Protocol (LDAP) configuration is enabled for this Vserver.

Providers
cmode

netapp_net_dns

Manage Netapp DNS server mapping. [Family: vserver]

Parameters
ensure
name	vserver name
provider

Properties
domains	Domain for the Vserver.
name_servers	IPv4 addresses of name servers.
state	The state of the DNS server mapping

Providers
cmode

netapp_role

Manage Netapp Role creation, modification and deletion. [Family: cluster]

Parameters
comment	Role comment
ensure
provider
rolename	The role name.

Properties
capabilities	List of capabilities for this role. Comma separate multiple values.

Providers
sevenmode

netapp_group

Manage Netapp Group creation, modification and deletion.

Parameters
comment	Group comment
ensure
groupname	The group name.
provider

Properties
roles	List of roles for this group. Comma separate multiple values.

Providers
sevenmode

netapp_security_login

Parameters
ensure
name	A composite key made up from application:authentication_method:username:vserver eg ssh:password:vsadmin:vserver01
password	Password for the user account. This is ignored for creating snmp users. This is required for creating non-snmp users.
provider

Properties
comment	Comments for the user account. The length of comment should be less than or equal to 128 charaters.
is_locked	Whether the login is locked, The valid values for are true or false
role_name	The default value is 'admin' for Admin vserver and 'vsadmin' for data vserver. This field is required.

Providers
cmode

netapp_kerberos_realm

Kerberos realm configuration specifies the locations of Key Distribution Center (KDC) servers and administration daemons for the Kerberos realms of interest. When returned as part of the output, all elements of this typedef are reported, unless limited by a set of desired attributes specified by the caller. [Family: vserver]

Parameters
ensure
name	Kerberos realm name.
provider

Properties
ad_server_ip	IP Address of the Active Directory Domain Controller (DC). This is a mandatory parameter if the kdc-vendor is 'microsoft'.
ad_server_name	Host name of the Active Directory Domain Controller (DC). This is a mandatory parameter if the kdc-vendor is 'microsoft'
admin_server_ip	IP address of the host where the Kerberos administration daemon is running. This is usually the master KDC. If this parameter is omitted, the IP address specified in kdc-ip is used. If specified, this should be the same as the kdc-ip if the kdc-vendor is 'microsoft'.
admin_server_port	The TCP port on the Kerberos administration server where the Kerberos administration service is running. The default for this parmater is 749.
clock_skew	The clock skew in minutes is the tolerance for accepting tickets with time stamps that do not exactly match the host's system clock. The default for this parameter is 5 minutes.
comment	Comment
config_name	Kerberos configuration name.
kdc_ip	The vendor of the Key Distribution Centre (KDC) server. If the configuration uses a Microsoft Active Directory (AD) domain for authentication, this field should be 'microsoft'.
kdc_port	TCP port on the KDC to be used for Kerberos communication. The default for this parameter is 88.
kdc_vendor	The vendor of the Key Distribution Centre (KDC) server. If the configuration uses a Microsoft Active Directory (AD) domain for authentication, this field should be 'microsoft'.
password_server_ip	IP address of the host where the Kerberos password-changing server is running. Typically, this is the same as the host indicated in the adminserver-ip. If this parameter is omitted, the IP address in kdc-ip is used.
password_server_port	The TCP port on the Kerberos password-changing server where the Kerberos password-changing service is running. The default for this parameter is 464.

Providers
cmode

netapp_export_rule

Manage Netapp CMode Export rule creation, modification and deletion. [Family: vserver]

Parameters
ensure
name	The export policy name and index. Must take the form of `policy_name:rule_number` where the rule number is an integer and the policy name is an existing export policy.
provider

Properties
allowdevenabled	Should the NFS server allow creation of devices. Defaults to true.
allowsetuid	Should the NFS server allow setuid. Defaults to true.
anonuid	User name or ID to map anonymous users to. Defaults to 65534.
clientmatch	Client match specification for the export rule.
exportchownmode	Change ownership mode. Possible values are 'restricted', 'unrestricted'. Defaults to 'restricted'.
ntfsunixsecops	Ignore/Fail Unix security operations on NTFS volumes. Possible values are 'fail', 'ignore'. Defaults to 'fail'.
protocol	Client access protocol. Defaults to 'any'. Possible values: 'any', 'nfs2', 'nfs3', 'nfs', 'cifs', 'nfs4', 'flexcache'.
rorule	Configure read-only rules. Defaults to 'any'.
rwrule	Read write rule. Defaults to 'any'.
superusersecurity	Superuser security flavor. Defaults to 'any'. Possible values: 'any', 'none', 'never', 'krb5', 'ntlm', 'sys', 'spinauth'.

Providers
cmode

netapp_nfs_export

Manage Netapp NFS Export creation, modification and deletion on 7mode. [Family: vserver]

Parameters
ensure
name	The export path. Valid format is /vol/volume_name.
path	The filer path to export. If not specified, uses :name value
persistent	Should this be a persistent export? Defaults to true.
provider

Properties
anon	Should the export support anonymous root access.
readonly	Export read-only hosts.
readwrite	Export read-write hosts. Defaults to 'all_hosts'.

Providers
sevenmode

netapp_iscsi_security

Manage Netap ISCSI initiator (client) authentication. [Family: vserver]

Parameters
ensure
initiator	ISCSI initiator name
outbound_password	ISCSI CHAP outbound password. Valid values are 12-16 hexidecimal digits.
password	ISCSI CHAP password. Valid values are 12-16 hexidecimal digits.
provider

Properties
auth_type	ISCSI initiator authentication type.
outbound_username	ISCSI CHAP outbound username
radius	ISCSI radius CHAP
username	ISCSI CHAP username

Providers
cmode

netapp_ldap_client

Manage Netapp LDAP client configuration for the cluster. [Family: vserver]

Parameters
ensure
name	The name of the LDAP client configuration.
provider

Properties
ad_domain	The Active Directory Domain Name for this LDAP configuration. The option is ONLY applicable for configurations using Active Directory LDAP servers.The Active Directory Domain Name for this LDAP configuration. The option is ONLY applicable for configurations using Active Directory LDAP servers.
allow_ssl	Allows the use of SSL for the TLS Handshake Protocol over the LDAP connections. The default value is false.
base_dn	Indicates the starting point for searches within the LDAP directory tree. If omitted, searches will start at the root of the directory tree.
base_scope	This indicates the scope for LDAP search. If omitted, this parameter defaults to 'subtree'. Possible values: base - Searches only the base directory entry, onelevel - Searches the immediate subordinates of the base directory entry, subtree - Searches the base directory entry and all its subordinates
bind_as_cifs_server	If set, the cluster will use the CIFS server's credentials to bind to the LDAP server. If omitted, this parameter defaults to 'true' if the configuration uses Active Directory LDAP and defaults to 'false' otherwise.
bind_dn	The Bind Distinguished Name (DN) is the LDAP identity used during the authentication process by the clients. This is required if the LDAP server does not support anonymous binds. This field is not used if 'bind-as-cfs-server' is set to 'true'. Example : cn=username,cn=Users,dc=example,dc=com
bind_password	The password to be used with the bind-dn.
group_dn	The Group Distinguished Name (DN), if specified, is used as the starting point in the LDAP directory tree for group lookups. If not specified, group lookups will start at the base-dn.
group_scope	This indicates the scope for LDAP search when doing group lookups. Possible values: base - Searches only the base directory entry, onelevel - Searches the immediate subordinates of the base directory entry, subtree - Searches the base directory entry and all its subordinates
is_netgroup_byhost_enabled	This indicates whether netgroup.byhost map should be queried for lookups.
min_bind_level	The minimum authentication level that can be used to authenticate with the LDAP server. If omitted, this parameter defaults to 'sasl'. Possible values: anonymous - Anonymous bind, simple - Simple bind, sasl - Simple Authentication and Security Layer (SASL) bind
netgroup_byhost_dn	The Netgroup Distinguished Name (DN), if specified, is used as the starting point in the LDAP directory tree for netgroup byhost lookups. If not specified, netgroup byhost lookups will start at the base-dn.
netgroup_byhost_scope	This indicates the scope for LDAP search when doing netgroup byhost lookups. Possible values: base - Searches only the base directory entry, onelevel - Searches the immediate subordinates of the base directory entry, subtree - Searches the base directory entry and all its subordinates
netgroup_dn	The Netgroup Distinguished Name (DN), if specified, is used as the starting point in the LDAP directory tree for netgroup lookups. If not specified, netgroup lookups will start at the base-dn.
netgroup_scope	This indicates the scope for LDAP search when doing netgroup lookups. Possible values: base - Searches only the base directory entry, onelevel - Searches the immediate subordinates of the base directory entry, subtree - Searches the base directory entry and all its subordinates
preffered_ad_servers	Preferred Active Directory (AD) Domain controllers to use for this configuration. This option is ONLY applicable for configurations using Active Directory LDAP servers
query_timeout	Maximum time in seconds to wait for a query response from the LDAP server. The default for this parameter is 3 seconds.
schema	LDAP schema to use for this configuration.
servers	List of LDAP Server IP addresses to use for this configuration. The option is NOT applicable for configurations using Active Directory LDAP servers.
tcp_port	The TCP port on the LDAP server to use for this configuration. If omitted, this parameter defaults to 389.
use_start_tls	This indicates if start_tls will be used over LDAP connections.
user_dn	The User Distinguished Name (DN), if specified, is used as the starting point in the LDAP directory tree for user lookups. If this parameter is omitted, user lookups will start at the base-dn.
user_scope	This indicates the scope for LDAP search when doing user lookups. Possible values: base - Searches only the base directory entry, onelevel - Searches the immediate subordinates of the base directory entry, subtree - Searches the base directory entry and all its subordinates

Providers
cmode

netapp_lun_map

netapp_sis_config

Manage Netapp sis config modification. [Family: vserver]

Parameters
ensure
path	The full path of the sis volume, /vol/<vol_name>.
provider

Properties
compression
enabled
idd
inline_compression
policy	The sis policy name to be attached to the volume.
quick_check_fsize	Quick check file size for Incompressible Data Detection. Accepts integers
sis_schedule	The schedule string for the sis operation. The format of the schedule: `day_list[@hour_list] or hour_list[@day_list] or - or auto or manual`

Providers
cmode

netapp_storage_array

netapp_quota

Example:

Limit `qtree1` on `vol1` to 10G

    netapp_quota { '/vol/vol1/qtree1':
      ensure    => present,
      type      => tree,
      volume    => 'vol1',
      disklimit => '10G',
    }

 Limit user bob to consume 2G on qtree1. Note that you cannot
 define multiple quotas for user bob:

     netapp_quota { 'bob':
       ensure    => present,
       type      => user,
       qtree     => 'qtree1',
       volume    => 'vol1',
       disklimit => '2048M',
     }

 Make sure the following restrictions apply in your
 environment before using this type:
 - every quota target has to be unique
 - quota entries must not contain any special characters that would
   require quotation
  [Family: vserver]

Parameters
ensure
name	The name of the quota target. Depending on the quota type this can be a pathname (e.g. `/vol/vol1/qtree1`), a username, or a group
provider

Properties
disklimit	The amount of space that the target can consume, e.g. `100M` or `2G`. You can also specify absent to make sure there is no limit.
filelimit	The number of files that the target can have. You can also specify absent to make sure there is no limit.
qtree	The qtree that the quota resides on. This is only relevant for `user` and `group` quotas
softdisklimit	The amount of space the target has to consume before a message is logged. You can also specify absent to make sure there is no limit.
softfilelimit	The number of files the target has to own before a message is logged. You can also specify absent to make sure there is no limit
threshold	The amount of disk space the target has to consume before a message is logged. Set to absent to make sure the treshold is unlimited
type	The type of the quota. You can define `tree`, `user` or `group` here
volume	The name of the volume the quota resides on

Providers
cmode
sevenmode

netapp_system_node_autosupport

Manage Netapp system node autosupport configuration. [Family: cluster]

Parameters
name	The node name.
provider

Properties
periodic_tx_window	The transmission window in format [h][<integer>m][s]

Providers
cmode

netapp_cifs

Manage Netapp CIFS server. [Family: vserver]

Parameters
ensure
name	cifs server name
provider

Properties
admin_password	Password for the account used to add this CIFS server to the Active Directory.
admin_username	Username for the account used to add this CIFS server to the Active Directory.
domain	Fully qualified domain name of the Windows Active Directory this CIFS server belongs to.

Providers
cmode

netapp_volume

Manage Netapp Volume creation, modification and deletion. [Family: vserver]

Parameters
aggregate	The aggregate this volume should be created in.
ensure
group_id	The UNIX group ID for the volume.
languagecode	The language code this volume should use.
name	The volume name. Valid characters are a-z, 1-9 & underscore.
provider
spaceres	The space reservation mode.
unix_permissions	Unix permission bits in octal string format.It's similar to Unix style permission bits: In Data ONTAP 7-mode, the default setting of '0755' gives read/write/execute permissions to owner and read/execute to group and other users. In Data ONTAP Cluster-Mode, for security style 'mixed' or 'unix', the default setting of '0755' gives read/write/execute permissions to owner and read/execute permissions to group and other users. For security style 'ntfs', the default setting of '0000' gives no permissions to owner, group and other users. It consists of 4 octal digits derived by adding up bits 4, 2 and 1. Omitted digits are assumed to be zeros. First digit selects the set user ID(4), set group ID (2) and sticky (1) attributes. The second digit selects permission for the owner of the file: read (4), write (2) and execute (1); the third selects permissions for other users in the same group; the fourth for other users not in the group.
user_id	The UNIX user ID for the volume.
volume_type	The type of the volume to be created. Possible values: rw - read-write volume (default setting), ls - load-sharing volume, dp - data-protection volume, dc - data-cache volume (FlexCache)

Properties
autosize	Should volume autosize be grow, grow_shrink, or off?
exportpolicy	The export policy with which the volume is associated.
initsize	The initial volume size. Valid format is [0-9]+[kmgt].
junctionpath	The fully-qualified pathname in the owning Vserver's namespace at which a volume is mounted.
options	The volume options hash.
snapreserve	The percentage of space to reserve for snapshots.
snapshot_policy	The name of the snapshot policy. The default policy name is 'default'.
state	The volume state. Valid options are: online, offline, restricted.

Providers
cmode
sevenmode

netapp_snapmirror_schedule

Manage Netapp Snapmirror schedule creation, modification and deletion. [Family: cluster, vserver]

Parameters
connection_mode	The connection mode to use between source and destination.
days_of_month	The days of month for schedule to be set. Can be single value between 1 and 31, comma seperated list (1,7,14), range (2-10), range with divider (1-30/7), `* to match all or - to match none.`
days_of_week	The days of week for schedule to be set. Can be single value between 0 and 6, inclusive, with 0 being Sunday, or must be name of the day (e.g. Tuesday), comma sepeated list (1,3,5), range (2-5), `* to match all or - to match none.`
destination_location	The destination location.
ensure	Netapp Snapmirror schedule resource state. Valid values are: present, absent.
hours	The hour(s) in the day for schedule to be set. Can be single value between 1 and 24, comma seperated list (1,7,14), range (2-10), range with divider (1-24/3), `* to match all or - to match none.`
max_transfer_rate	The max transfer rate, in KB/s. Defaults to unlimited.
minutes	The minutes in the hour for schedule to be set. Can be single value between 0 and 59, comma seperated list (1,7,14), range (2-10), range with divider (1-59/3), `* to match all or - to match none.`
provider
restart	The restart mode to use when transfer interrupted. Allowed values are: always, never and restart.
source_location	The source location.

Providers
sevenmode

netapp_user

Manage Netapp User creation, modification and deletion.

Parameters
ensure
password	The user password. Minimum length is 8 characters, must contain at-least one number.
provider
status	Status of user account. Valid values are: enabled, disabled and expired. Cannot be modified via API.
username	The user username.

Properties
comment	User comment
fullname	The user full name.
groups	List of groups for this user account. Comma separate multiple values.
passmaxage	Number of days that this user's password can be active before the user must change it. Default value is 2^31-1 days.
passminage	Number of days that this user's password must be active before the user can change it. Default value is 0.

Providers
cmode
sevenmode

netapp_cluster_id

netapp_vserver_option

netapp_security_login_role

A login role [Family: cluster]

Parameters
ensure
name	A composite key made up from command_directory_name:role_name:vserver eg ssh:password:vsadmin:vserver01
provider

Properties
access_level	Access level for the role. Possible values: 'none', 'readonly', 'all'. The default value is 'all'.
role_query	A query for the role. The query must apply to the specified command or directory name. Example: The command is 'volume show' and the query is '-volume vol1'. The query is applied to the command resulting in populating only the volumes with name vol1.

Providers
cmode

netapp_vserver_cifs_options

Manage Netapp Vserver CIFS options. [Family: vserver]

Parameters
name	vserver name
provider

Properties
max_mpx	Maximum simultaneous operations per TCP connection. Defaults to 255.
smb2_enabled	Enable all SMB2 Protocols. Defaults to true.

Providers
cmode

netapp_igroup

Manage Netapp ISCSI initiator groups [Family: vserver]

Parameters
ensure
name	initiator group name
provider

Properties
force	Forcibly remove the initiator even if there are existing LUNs mapped to this initiator group. Best practice is to attempt to unmap all the luns associated with a group before removing the initiator. Default to false
group_type	initiator group type
members	An array of WWPN or Alias initiator members of the group
os_type	OS type of the initiators within the group. The os type applies to all initiators within the group and governs the finer details of SCSI protocol interaction with these initiators. Required.
portset	portset that is bound to the initiator group A value of `false` will unbind the portset. Valid values are a string or `false`

Providers
cmode

Change log

All notable changes to this project will be documented in this file.

1.3.0

Summary

This release adds many new types and new parameters.

Added

New netapp_cifs type.
New netapp_net_dns type.
New netapp_net_port type.
New netapp_storage_array type.
New netapp_storage_failover type.
New netapp_system_node_autosupport type.
New netapp_vserver_cifs_domain_password_schedule type.
New netapp_vserver_cifs_options type.
New netapp_nfs property auth_sys_extended_groups.
New netapp_nfs property enable_ejukebox.

Fixed

Issues with requiring libraries on the first pluginsync.
netapp_ldap_client name validation.
netapp_ldap_client instance listing.
netapp_ldap_client without netgroup_byhost_scope.
netapp_qtree allows same qtname in separate volumes.

1.2.0

Summary

This release adds several helper manifests for setting up common configurations of nfs/iscsi/svm, and fixes some bugs with netapp_volume

Features

Add netapp::nfs define
Add netapp::iscsi define
Add netapp::svm define

Bugfixes

Better debug and error handling
Remove volume offline during volume destroy in netapp_volume
Fix volume info to not incorrectly get autosize info

1.1.0

Summary

This release contains many major additions and fixes gleaned from real-world application.

Features

New type netapp_security_login
New type netapp_security_login_role
New type netapp_snapmirror_schedule
Add netapp_aggregate properties:
- option_free_space_realloc
- option_fs_size_fixed
- option_ha_policy
- option_ignore_inconsistent
- option_lost_write_protect
- option_max_write_alloc_blocks
- option_striping
- option_nosnap
- option_raid_cv
- option_raid_lost_write
- option_raid_zoned
- option_raidsize
- option_cache_raid_group_size
- option_raidtype
- option_resyncsnaptime
- option_root
- option_snapmirrored
- option_snapshot_autodelete
- option_thorough_scrub
- option_percent_snapshot_space
- option_nearly_full_threshold
- option_full_threshold
- option_is_flash_pool_caching_enabled
- option_hybrid_enabled
- option_hybrid_enabled_force
Add netapp_igroup property: force
Add netapp_lun property: force
Add netapp_sis_policy property: changelog_threshold_percent
Add netapp_volume properties:
- volume_type
- group_id
- user_id
- unix_permissions
Add netapp_vserver properties:
- ipspace
- is_repository

Bugfixes

Lots of readme updates
Fix netapp_export_rule ordering and uniqueness constraint.
Fix netapp_igroup portset property
Fix netapp_kerberos_config properties:
- admin_password
- admin_user_name
- keytab_uri
- organizational_unit
- service_principal_name
- organizational_unit
Fix netapp_license
Fix netapp_lun size property
Fix netapp_security_login unlocking
Fix netapp_security_login_role properties:
- access_level
- role_query
Fix netapp_vserver stopping/starting
Fix netapp_vserver_peer to make peer_cluster optional
Fix netapp_cluster_id to allow contact/location to be edited
Fix netapp_kerberos_realm properties to have default values:
- admin_server_port to be 749
- clock_skew to be 5
- kdc_port to be 88
- password_server_port to be 464
Fix netapp_ldap_client properties to have default values:
- base_scope to be subtree
- min_bind_level to be sasl
- query_timeout to be 3
- tcp_port to be 389
Fix netapp_lif firewallpolicy valid value: add data
Fix netapp_snapmirror property to have default value: max_transfer_rate to be 0
Fix fact resolution on 7mode

1.0.0 - 2015-08-18

Summary

This is the first stable release of the netapp module.

[0.6.0] - 2015-08-18

Summary:

This is includes new features, bugfixes, readme changes and a test automations script as well as a suite of tests.

####Features

Added netapp_sis_policy resource
Added netapp_iscsi and netapp_iscsi_security resources
Added igroup
Added ldap config and ldap client
Added kerberos config and kerberos realm
Added netapp_iscsi_interface_accesslist
Add ASUP tracking to device information
Added security login and security role
Add snapmirror and vserver_peer resources

####Bugfixes

netapp_sis_config fix
netapp_volume fix
netapp_nfs and netapp_cifs fix
Ensure properties are arrays in multiple resources
Fail resource on target_alias change for netapp_iscsi
Fixes for aggregate creation, volume creation, export policies and LIF operations

####Improvements

Docs update
Add spec helper code
Add acceptance tests

0.5.0 - 2015-05-12

Summary:

This is the initial rewrite to convert the module to use the modern Cluster mode instead of the deprecated 7-mode.

0.4.0 - 2013-09-30 Gavin Williams fatmcgav@gmail.com

Feature release incorporating multiple changes. Many thanks to Stefan Schulte for a large amount of the changes. Noteworthy changes:

(#41) Added the netapp_quota type/provider.
(#43) Remove the need for a special configuration file - Instead get username and password from connection string.
Simplify calling of netapp commands by using netapp_commands function.
Loads more tests, with some new integration/unit tests.
Various types will auto-require any appropriate resources that they should depend on. E.g. Netapp_export will auto-require the appropriate netapp_volume or netapp_qtree. Netapp_user will auto-require the appropriate netapp_group.
Some improvements to facts being returned.

0.3.0 2013-04-09 Gavin Williams fatmcgav@gmail.com

Feature release incorporating 2 enhancements.

(#18) Improved device facts Now gives more meaningful fact data.
(#20) Convert to Prefetch/Flush style providers. Large performance improvement by converting to a prefetch/flush model for providers.
Also improved Readme, and correct various typos and incorrect code comments.

0.2.4 2013-03-28 Gavin Williams fatmcgav@gmail.com

(#27) Updated netapp_volume autoincrement= to convert volume size into MB before calculating autoincrement sizes.

0.2.3 2013-03-22 Gavin Williams fatmcgav@gmail.com

(#13) Updated Netapp_volume to adjust the auto-increment settings when resizing a volume.

0.2.2 2013-03-15 Gavin Williams fatmcgav@gmail.com

(#24) Updated Netapp_export provider to fix a destroy bug.

0.2.1 2013-03-07 Gavin Williams fatmcgav@gmail.com

(#22) Updated Netapp_Export type to not default :path to :name, as causes OnTap API call to fail.

0.2.0 2013-03-06 Gavin Williams fatmcgav@gmail.com

(#19) Fix Netapp_qtree handling of missing volume.
(#12) Add support for NetApp NFS export security.

0.1.2 2013-02-06 Gavin Williams fatmcgav@gmail.com

(#14) Fix Snapschedule bug with which-days and nil versus 0

0.1.1 2013-01-30 Gavin Williams fatmcgav@gmail.com

(#9) Updated netapp_user, netapp_group and netapp_role name input validation to support '-'.
(#10) Updated netapp_volume type/provider to fix snapschedule property bug.

0.1.0 2013-01-12 Gavin Williams fatmcgav@gmail.com

Initial release.

                                 Apache License
                           Version 2.0, January 2004
                        http://www.apache.org/licenses/

   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION

   1. Definitions.

      "License" shall mean the terms and conditions for use, reproduction,
      and distribution as defined by Sections 1 through 9 of this document.

      "Licensor" shall mean the copyright owner or entity authorized by
      the copyright owner that is granting the License.

      "Legal Entity" shall mean the union of the acting entity and all
      other entities that control, are controlled by, or are under common
      control with that entity. For the purposes of this definition,
      "control" means (i) the power, direct or indirect, to cause the
      direction or management of such entity, whether by contract or
      otherwise, or (ii) ownership of fifty percent (50%) or more of the
      outstanding shares, or (iii) beneficial ownership of such entity.

      "You" (or "Your") shall mean an individual or Legal Entity
      exercising permissions granted by this License.

      "Source" form shall mean the preferred form for making modifications,
      including but not limited to software source code, documentation
      source, and configuration files.

      "Object" form shall mean any form resulting from mechanical
      transformation or translation of a Source form, including but
      not limited to compiled object code, generated documentation,
      and conversions to other media types.

      "Work" shall mean the work of authorship, whether in Source or
      Object form, made available under the License, as indicated by a
      copyright notice that is included in or attached to the work
      (an example is provided in the Appendix below).

      "Derivative Works" shall mean any work, whether in Source or Object
      form, that is based on (or derived from) the Work and for which the
      editorial revisions, annotations, elaborations, or other modifications
      represent, as a whole, an original work of authorship. For the purposes
      of this License, Derivative Works shall not include works that remain
      separable from, or merely link (or bind by name) to the interfaces of,
      the Work and Derivative Works thereof.

      "Contribution" shall mean any work of authorship, including
      the original version of the Work and any modifications or additions
      to that Work or Derivative Works thereof, that is intentionally
      submitted to Licensor for inclusion in the Work by the copyright owner
      or by an individual or Legal Entity authorized to submit on behalf of
      the copyright owner. For the purposes of this definition, "submitted"
      means any form of electronic, verbal, or written communication sent
      to the Licensor or its representatives, including but not limited to
      communication on electronic mailing lists, source code control systems,
      and issue tracking systems that are managed by, or on behalf of, the
      Licensor for the purpose of discussing and improving the Work, but
      excluding communication that is conspicuously marked or otherwise
      designated in writing by the copyright owner as "Not a Contribution."

      "Contributor" shall mean Licensor and any individual or Legal Entity
      on behalf of whom a Contribution has been received by Licensor and
      subsequently incorporated within the Work.

   2. Grant of Copyright License. Subject to the terms and conditions of
      this License, each Contributor hereby grants to You a perpetual,
      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
      copyright license to reproduce, prepare Derivative Works of,
      publicly display, publicly perform, sublicense, and distribute the
      Work and such Derivative Works in Source or Object form.

   3. Grant of Patent License. Subject to the terms and conditions of
      this License, each Contributor hereby grants to You a perpetual,
      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
      (except as stated in this section) patent license to make, have made,
      use, offer to sell, sell, import, and otherwise transfer the Work,
      where such license applies only to those patent claims licensable
      by such Contributor that are necessarily infringed by their
      Contribution(s) alone or by combination of their Contribution(s)
      with the Work to which such Contribution(s) was submitted. If You
      institute patent litigation against any entity (including a
      cross-claim or counterclaim in a lawsuit) alleging that the Work
      or a Contribution incorporated within the Work constitutes direct
      or contributory patent infringement, then any patent licenses
      granted to You under this License for that Work shall terminate
      as of the date such litigation is filed.

   4. Redistribution. You may reproduce and distribute copies of the
      Work or Derivative Works thereof in any medium, with or without
      modifications, and in Source or Object form, provided that You
      meet the following conditions:

      (a) You must give any other recipients of the Work or
          Derivative Works a copy of this License; and

      (b) You must cause any modified files to carry prominent notices
          stating that You changed the files; and

      (c) You must retain, in the Source form of any Derivative Works
          that You distribute, all copyright, patent, trademark, and
          attribution notices from the Source form of the Work,
          excluding those notices that do not pertain to any part of
          the Derivative Works; and

      (d) If the Work includes a "NOTICE" text file as part of its
          distribution, then any Derivative Works that You distribute must
          include a readable copy of the attribution notices contained
          within such NOTICE file, excluding those notices that do not
          pertain to any part of the Derivative Works, in at least one
          of the following places: within a NOTICE text file distributed
          as part of the Derivative Works; within the Source form or
          documentation, if provided along with the Derivative Works; or,
          within a display generated by the Derivative Works, if and
          wherever such third-party notices normally appear. The contents
          of the NOTICE file are for informational purposes only and
          do not modify the License. You may add Your own attribution
          notices within Derivative Works that You distribute, alongside
          or as an addendum to the NOTICE text from the Work, provided
          that such additional attribution notices cannot be construed
          as modifying the License.

      You may add Your own copyright statement to Your modifications and
      may provide additional or different license terms and conditions
      for use, reproduction, or distribution of Your modifications, or
      for any such Derivative Works as a whole, provided Your use,
      reproduction, and distribution of the Work otherwise complies with
      the conditions stated in this License.

   5. Submission of Contributions. Unless You explicitly state otherwise,
      any Contribution intentionally submitted for inclusion in the Work
      by You to the Licensor shall be under the terms and conditions of
      this License, without any additional terms or conditions.
      Notwithstanding the above, nothing herein shall supersede or modify
      the terms of any separate license agreement you may have executed
      with Licensor regarding such Contributions.

   6. Trademarks. This License does not grant permission to use the trade
      names, trademarks, service marks, or product names of the Licensor,
      except as required for reasonable and customary use in describing the
      origin of the Work and reproducing the content of the NOTICE file.

   7. Disclaimer of Warranty. Unless required by applicable law or
      agreed to in writing, Licensor provides the Work (and each
      Contributor provides its Contributions) on an "AS IS" BASIS,
      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
      implied, including, without limitation, any warranties or conditions
      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
      PARTICULAR PURPOSE. You are solely responsible for determining the
      appropriateness of using or redistributing the Work and assume any
      risks associated with Your exercise of permissions under this License.

   8. Limitation of Liability. In no event and under no legal theory,
      whether in tort (including negligence), contract, or otherwise,
      unless required by applicable law (such as deliberate and grossly
      negligent acts) or agreed to in writing, shall any Contributor be
      liable to You for damages, including any direct, indirect, special,
      incidental, or consequential damages of any character arising as a
      result of this License or out of the use or inability to use the
      Work (including but not limited to damages for loss of goodwill,
      work stoppage, computer failure or malfunction, or any and all
      other commercial damages or losses), even if such Contributor
      has been advised of the possibility of such damages.

   9. Accepting Warranty or Additional Liability. While redistributing
      the Work or Derivative Works thereof, You may choose to offer,
      and charge a fee for, acceptance of support, warranty, indemnity,
      or other liability obligations and/or rights consistent with this
      License. However, in accepting such obligations, You may act only
      on Your own behalf and on Your sole responsibility, not on behalf
      of any other Contributor, and only if You agree to indemnify,
      defend, and hold each Contributor harmless for any liability
      incurred by, or claims asserted against, such Contributor by reason
      of your accepting any such warranty or additional liability.

   END OF TERMS AND CONDITIONS

   APPENDIX: How to apply the Apache License to your work.

      To apply the Apache License to your work, attach the following
      boilerplate notice, with the fields enclosed by brackets "[]"
      replaced with your own identifying information. (Don't include
      the brackets!) The text should be enclosed in the appropriate
      comment syntax for the file format. We also recommend that a
      file or class name and description of purpose be included on the
      same "printed page" as the copyright notice for easier
      identification within third-party archives.

   Copyright [yyyy] [name of copyright owner]

   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
   You may obtain a copy of the License at

       http://www.apache.org/licenses/LICENSE-2.0

   Unless required by applicable law or agreed to in writing, software
   distributed under the License is distributed on an "AS IS" BASIS,
   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   See the License for the specific language governing permissions and
   limitations under the License.

Parameters
ensure
initiatorgroup	Initiator group to map to.
lunmap	Lun map - Composite key of format {path}:{lun-id}.
provider

Properties
contact	The cluster contact
location	The cluster location

Modules

Discover

Contribute

Puppet

Premium features

Downloads

Resources

About Forge

Getting Started

netapp

Support the Puppet Community by contributing to this module

Version information

Start using this module

Documentation

NetApp Data ONTAP device module

Overview

Module Description

Setup

Requirements

NetApp Manageability SDK

Device Proxy System Setup

Usage

Beginning with netapp

Classes and Defined Types

Types and Providers

Type: netapp_aggregate

Parameters

blocktype

checksumstyle

diskcount

disksize

disktype

ensure

groupselectionmode

ismirrored

name

nodes

raidsize

raidtype

state

striping

Type: netapp_cluster_id

Parameters

contact

ensure

location

name

Type: netapp_cluster_peer

Parameters

ensure

name

password

peeraddresses

timeout

username

Type: netapp_export_policy

Parameters

ensure

name

Type: netapp_export_rule

Parameters

allowdevenabled

allowsetuid

anonuid

clientmatch

ensure

exportchownmode

name

ntfsunixsecops

protocol

rorule

rwrule

superusersecurity

Type: netapp_group

Parameters

comment

ensure

groupname

roles

Type: netapp_igroup

`blocktype`

`checksumstyle`

`diskcount`

`disksize`

`disktype`

`ensure`

`groupselectionmode`

`ismirrored`

`name`

`nodes`

`raidsize`

`raidtype`

`state`

`striping`

`contact`

`ensure`

`location`

`name`

`ensure`

`name`

`password`

`peeraddresses`

`timeout`

`username`

`ensure`

`name`

`allowdevenabled`

`allowsetuid`

`anonuid`

`clientmatch`

`ensure`

`exportchownmode`

`name`

`ntfsunixsecops`

`protocol`

`rorule`

`rwrule`

`superusersecurity`

`comment`

`ensure`

`groupname`

`roles`

`name`

`force`

`group_type`

`members`

`os_type`

`portset`

`svm`

`target_alias`

`state`

`initiator`

`auth_type`

`radius`

`username`

`password`

`outbound_username`

`outbound_password`

`package`

`codes`

`ensure`

`name`

`ensure`

`ad_domain`

`allow_ssl`

`base_dn`

`base_scope`

`bind_as_cifs_server`

`bind_dn`

`bind_password`

`group_dn`

`group_scope`

`is_netgroup_byhost_enabled`

`min_bind_level`

`netgroup_byhost_dn`

`netgroup_byhost_scope`

`netgroup_dn`

`netgroup_scope`

`preffered_ad_servers`

`query_timeout`