(belated response)
On Sun, Sep 14, 2014 at 12:10 AM, Dmitri Pal wrote:
> On 09/13/2014 04:03 PM, Traiano Welcome wrote:
>
> Hi List
>
> Currently I have a stable trust relationship going between IPA and Windows
> AD. I create users and manage passwords in AD, but want to manage the rest
> in
On Sat, 20 Sep 2014 19:44:28 +0200
Rob Verduijn wrote:
> Hi again,
>
> Thank you for the quick response.
> I've removed the credstore entries that are not necessary for the nfs
> access.
> Now the users no longer go through gssproxy, but apache does.
>
> I've googled around quite a bit and and
On Sat, 20 Sep 2014 11:38:16 -0500
Anthony Messina wrote:
> On Saturday, September 20, 2014 12:15:04 PM Simo Sorce wrote:
> > > [service/nfs-client]
> > >
> > > mechs = krb5
> > > cred_store = keytab:/etc/krb5.keytab
> > > cred_store = ccache:FILE:/var/lib/gssproxy/clients/krb5cc_%U
> > >
Hi again,
Thank you for the quick response.
I've removed the credstore entries that are not necessary for the nfs
access.
Now the users no longer go through gssproxy, but apache does.
I've googled around quite a bit and and it seems that your presentation on
youtube and the gssproxy page together
On Saturday, September 20, 2014 12:15:04 PM Simo Sorce wrote:
> > [service/nfs-client]
> >
> > mechs = krb5
> > cred_store = keytab:/etc/krb5.keytab
> > cred_store = ccache:FILE:/var/lib/gssproxy/clients/krb5cc_%U
> > cred_store = client_keytab:/etc/gssproxy/%U.keytab
> > cred_usage = ini
On Sat, 20 Sep 2014 16:53:48 +0200
Rob Verduijn wrote:
> Hello all,
>
> I've managed to get the gssproxy to work on my installation.
> I can now mount my apache document root using sec=krb5p and apache
> automagically mounts the share when needed.
>
> However I noticed that now all nfs credenti
Hello all,
I've managed to get the gssproxy to work on my installation.
I can now mount my apache document root using sec=krb5p and apache
automagically mounts the share when needed.
However I noticed that now all nfs credentials are going through gssproxy.
Is there a way to disable this for regu