Tutorial: Creating writable per-user subdirectories
After you create an EFS file system and mount it locally on your EC2
instance, it exposes an empty directory called the file system root.
One common use case for this file system root directory is to create a "writable" subdirectory
for each user you create on the EC2 instance and mount the subdirectory on the user's
home directory. All files and subdirectories the user creates in their home directory are then
created on the EFS file system.
Note
You can follow the Getting started exercise to create and mount an EFS file system on your EC2 instance.
In the following steps, you create a user, create a subdirectory for the user, make the user the owner of the subdirectory, and then mount the Amazon EFS subdirectory on the user's home directory.
-
Create user mike:
-
Log in to your EC2 instance. Using root privileges (in this case, using the
sudocommand), create the user and assign a password.For example, the following command creates the user
mike.$ sudo useradd -c "Mike Smith" mike $ sudo passwd mikeA home directory is also created for the user. For example,
/home/mike.
-
-
Create a subdirectory under
EFSrootfor the user.For example, the following command creates subdirectory
mikeunderEFSroot.$ sudo mkdir /EFSroot/mikeYou will need to replace
EFSrootwith your local directory name. -
The root user and root group are the owners of the subdirectory (you can verify this by using the
ls -lcommand). To enable full permissions for the user on this subdirectory, grant ownership of the directory to the user.For example:
$ sudo chown mike:mike /EFSroot/mike -
Use the
mountcommand to mount the subdirectory onto the user's home directory.For example:
$ sudo mount -t nfs -o nfsvers=4.1,rsize=1048576,wsize=1048576,hard,timeo=600,retrans=2,noresvportmount-target-DNS:/mike /home/mikeThe
mount-target-DNSaddress identifies the remote EFS file system root.
If you unmount this mount target, the user can't access the directory without remounting, which requires root permissions.