public inbox for gentoo-user@lists.gentoo.org
 help / color / mirror / Atom feed
Search results ordered by [date|relevance]  view[summary|nested|Atom feed]
thread overview below | download: 
* [gentoo-user] idmapd nfs4 and ldap pleasantries :)
@ 2015-10-08 16:34 99% symack
  0 siblings, 0 replies; 1+ results
From: symack @ 2015-10-08 16:34 UTC (permalink / raw
  To: gentoo-user

[-- Attachment #1: Type: text/plain, Size: 1110 bytes --]

Hello Everybody!

So decided to adopt nfs4 + rpc + ldap since most of the posts regarding
bugs I have seen range between 2012-2015, so silly me, safe to come out
right? wrong.....

Cient ldap user:

# id user1
uid=1004(user1) gid=1005(user1) groups=27(sudo),1005(user1)

Server ldap user:
# id user1
uid=1004(user1) gid=1005(user1) groups=27(sudo),1005(user1)

As you can see `nslcd and nscd` are doing their job on the client side. I
can log in, mount etc..
all fine. Except the infamous `everything has permission nobody nogroup`

A few notes:

* The `Domain` attribute is set to the same host in idmapd.conf for both
client and server
* If I set  Nobody-User = user1 Nobody-Group = user1 everything works as
expected but this was just a test.
* If I try to adduser user1 on the client I get an error as expected...
User exists therefore, users and groups are sync'ed as per ldap and nss...

Question

Can rpc.idmap translate ldap users over nsswitch? When I try to use
`umich_ldap` as the translator idmapd does not start with `umich_ldap` does
not exist...

How can I fix this please? :)

Kind Regards,

M

[-- Attachment #2: Type: text/html, Size: 1795 bytes --]

^ permalink raw reply	[relevance 99%]

Results 1-1 of 1 | reverse | options above
-- pct% links below jump to the message on this page, permalinks otherwise --
2015-10-08 16:34 99% [gentoo-user] idmapd nfs4 and ldap pleasantries :) symack

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox