Create an NFS volume for Azure NetApp Files
Azure NetApp Files supports creating volumes using NFS (NFSv3 or NFSv4.1), SMB3, or dual protocol (NFSv3 and SMB, or NFSv4.1 and SMB). A volume's capacity consumption counts against its pool's provisioned capacity.
Before you begin
- You must have already set up a capacity pool.
See Create a capacity pool.
- A subnet must be delegated to Azure NetApp Files.
See Delegate a subnet to Azure NetApp Files.
Deciding which NFS version to use
NFSv3 can handle a wide variety of use cases and is commonly deployed in most enterprise applications. You should validate what version (NFSv3 or NFSv4.1) your application requires and create your volume using the appropriate version. For example, if you use Apache ActiveMQ, file locking with NFSv4.1 is recommended over NFSv3.
Support for UNIX mode bits (read, write, and execute) is available for NFSv3 and NFSv4.1. Root-level access is required on the NFS client to mount NFS volumes.
Local user/group and LDAP support for NFSv4.1
Currently, NFSv4.1 supports root access to volumes only. See Configure NFSv4.1 default domain for Azure NetApp Files.
Ensure that you’re using the proper mount instructions for the volume. See Mount or unmount a volume for Windows or Linux virtual machines.
The NFS client should be in the same VNet or peered VNet as the Azure NetApp Files volume. Connecting from outside the VNet is supported; however, it will introduce additional latency and decrease overall performance.
Ensure that the NFS client is up to date and running the latest updates for the operating system.
Create an NFS volume
Click the Volumes blade from the Capacity Pools blade. Click + Add volume to create a volume.
In the Create a Volume window, click Create, and provide information for the following fields under the Basics tab:
Specify the name for the volume that you are creating.
A volume name must be unique within each capacity pool. It must be at least three characters long. The name must begin with a letter. It can contain letters, numbers, underscores ('_'), and hyphens ('-') only.
You cannot use
binas the volume name.
Specify the capacity pool where you want the volume to be created.
Specify the amount of logical storage that is allocated to the volume.
The Available quota field shows the amount of unused space in the chosen capacity pool that you can use towards creating a new volume. The size of the new volume must not exceed the available quota.
If the volume is created in a manual QoS capacity pool, specify the throughput you want for the volume.
If the volume is created in an auto QoS capacity pool, the value displayed in this field is (quota x service level throughput).
Specify the Azure virtual network (VNet) from which you want to access the volume.
The Vnet you specify must have a subnet delegated to Azure NetApp Files. The Azure NetApp Files service can be accessed only from the same Vnet or from a Vnet that is in the same region as the volume through Vnet peering. You can also access the volume from your on-premises network through Express Route.
Specify the subnet that you want to use for the volume.
The subnet you specify must be delegated to Azure NetApp Files.
If you have not delegated a subnet, you can click Create new on the Create a Volume page. Then in the Create Subnet page, specify the subnet information, and select Microsoft.NetApp/volumes to delegate the subnet for Azure NetApp Files. In each Vnet, only one subnet can be delegated to Azure NetApp Files.
In supported regions, you can specify whether you want to use Basic or Standard network features for the volume. See Configure network features for a volume and Guidelines for Azure NetApp Files network planning for details.
If you want to apply an existing snapshot policy to the volume, click Show advanced section to expand it, specify whether you want to hide the snapshot path, and select a snapshot policy in the pull-down menu.
For information about creating a snapshot policy, see Manage snapshot policies.
Click Protocol, and then complete the following actions:
Select NFS as the protocol type for the volume.
Specify a unique file path for the volume. This path is used when you create mount targets. The requirements for the path are as follows:
- It must be unique within each subnet in the region.
- It must start with an alphabetical character.
- It can contain only letters, numbers, or dashes (
- The length must not exceed 80 characters.
Select the Version (NFSv3 or NFSv4.1) for the volume.
If you are using NFSv4.1, indicate whether you want to enable Kerberos encryption for the volume.
Additional configurations are required if you use Kerberos with NFSv4.1. Follow the instructions in Configure NFSv4.1 Kerberos encryption.
If you want to enable Active Directory LDAP users and extended groups (up to 1024 groups) to access the volume, select the LDAP option. Follow instructions in Configure ADDS LDAP with extended groups for NFS volume access to complete the required configurations.
Customize Unix Permissions as needed to specify change permissions for the mount path. The setting does not apply to the files under the mount path. The default setting is
0770. This default setting grants read, write, and execute permissions to the owner and the group, but no permissions are granted to other users.
Registration requirement and considerations apply for setting Unix Permissions. Follow instructions in Configure Unix permissions and change ownership mode.
Optionally, configure export policy for the NFS volume.
Click Review + Create to review the volume details. Then click Create to create the volume.
The volume you created appears in the Volumes page.
A volume inherits subscription, resource group, location attributes from its capacity pool. To monitor the volume deployment status, you can use the Notifications tab.
- Configure NFSv4.1 default domain for Azure NetApp Files
- Configure NFSv4.1 Kerberos encryption
- Configure ADDS LDAP over TLS for Azure NetApp Files
- Configure ADDS LDAP with extended groups for NFS volume access
- Mount or unmount a volume for Windows or Linux virtual machines
- Configure export policy for an NFS volume
- Configure Unix permissions and change ownership mode.
- Resource limits for Azure NetApp Files
- Learn about virtual network integration for Azure services