Hi, This is similar as the port from May 2023 (Mixing both local files and LDAP for automount maps). This use case is to continue using LDAP automountMap, except one (or more) automounts that we want to mount as local directories.
This has been accomplished with RHEL 7, hopefully same can be done with sssd on RHEL 8 and later. Brief RHEL 7 configuration ----------------------------- + The /etc/auto.master reads /proj /etc/auto.proj + The /etc/auto.proj reads zzz host:/export/zzz +auto.proj + nsswitch.conf reads automount: files ldap + Automount dump reads: Mount point: /proj source(s): instance type(s): file map: /etc/auto.proj zzz | host-1:/export/zzz zzz | storage:/pool/zzz + Result 1. /proj/zzz is mounted ONLY on the host-1 as /export/zzz 2. Other /proj/folders are all mounted as expected 3. Other hosts (w/o custom auto.master, auto.proj) mount as /proj/zzz RHEL 9 -------- + sssd.conf reads [domain/default] id_provider = ldap autofs_provider = ldap auth_provider = ldap chpass_provider = ldap ldap_uri = ldaps://server ldap_search_base = dc=ex,dc=com ldap_group_search_base = dc=ex,dc=com ldap_netgroup_search_base = dc=ex,dc=com ldap_id_use_start_tls = True ldap_tls_cacertdir = /etc/openldap/cacerts/ cache_credentials = True ldap_tls_reqcert = allow ldap_autofs_search_base = o=x,dc=ex,dc=com ldap_autofs_map_object_class = automountMap ldap_autofs_map_name = automountMapName ldap_autofs_entry_object_class = automount ldap_autofs_entry_key = automountKey ldap_autofs_entry_value = automountInformation + nsswitch.conf automount: files sss # same as RHEL 7 + The /etc/auto.master reads /project /etc/auto.proj + The /etc/auto.proj reads zzz host-1:/export/zzz +auto.proj + Automount dump is also same as with RHEL 7. Mount point: /proj source(s): instance type(s): file map: /etc/auto.proj zzz | host-1:/export/zzz zzz | storage:/pool/zzz + Result 1. /proj/zzz is NOT mounted, as well as /export/zzz 2. Other /proj/folders are all mounted as expected. 3. Other hosts (w/o custom auto.master, auto.proj) mount as /proj/zzz Is this currently supported by sssd anyway? Thanks Zarko -- _______________________________________________ sssd-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
