On Fri, Jan 29, 2010 at 03:40:40PM -0700, Bryan Murdock wrote: > Allright, I tried the basic nfsv4 setup (no kerberos or anything). > The idmapd thing that makes sure users and groups look right even if > the IDs are different between client and server is nice, however, > permissions are still based on straight IDs as far as I can gather. > If bmurdock on the server is id 1000, and 1001 on the client, bmurdock > can't access bmurdock owned files. Do I still need to sync up user > and group IDs between the server and the clients or am I missing > something?
So, idmapd can be configured in a lot of different ways, and the documentation isn't very good. I've only tried setups where the IDs were the same everywhere, but I would have expected things to work even if they don't match (although in NFSv3, they definitely always needed to match). One email I saw said that uids matter. I didn't think this was how it works, but I guess I'm still learning: http://linux-nfs.org/pipermail/nfsv4/2009-January/009809.html -- Andrew McNabb http://www.mcnabbs.org/andrew/ PGP Fingerprint: 8A17 B57C 6879 1863 DE55 8012 AB4D 6098 8826 6868 -------------------- BYU Unix Users Group http://uug.byu.edu/ The opinions expressed in this message are the responsibility of their author. They are not endorsed by BYU, the BYU CS Department or BYU-UUG. ___________________________________________________________________ List Info (unsubscribe here): http://uug.byu.edu/mailman/listinfo/uug-list
