On Mon, 04 Aug 2008 17:45:41 +0200, Nicolas Williams <Nicolas.Williams at Sun.COM> wrote:
> On Mon, Aug 04, 2008 at 10:37:04AM -0500, Paul Fisher wrote: >> I'm trying to use NFSv4 mounts and idmap to deal with differences in the >> uid/gid values between the server and clients. It is my understanding >> that NFSv4/idmap will map names->ids, and not use the id values >> directly. Is this correct? > > Sortof. > > NFSv4 uses names on the wire. > > The Solaris NFSv4 stack supports only one Unix domain, plus it supports > all of an Active Directory (Windows) forest. > > What you're trying to do, evidently, is use multiple Unix domains. We > don't support that yet. > >> - Domain = localnet (etch-01 -> /etc/idmapd.conf > > There is no idmapd.conf on Solaris. maybe there is some confusion by the inital poster wrt. to NFSv4 and idmap(1M) and nfsmapid(1M). NFSv4 uses the latter as a framework to map OTW usernames http://opensolaris.org/os/community/documentation/files/nfsmapid.html however as Nico pointed out nfsmapid(1M) is now also a client of idmap(1M) in order to support AD as done via: 6601949 nfsmapid should handle Windows users and groups in a heterogenous environment http://bugs.opensolaris.org/view_bug.do?bug_id=6601949 and as Nico also pointed out we don't support multiple Unix domain mappings. hth --- frankB
