Hi Sean, thank you. I put the domain in upper case in the imapd.conf, and disabled all NFSv2 and NFSv3 options in /etc/sysconfig/nfs. Now it works in my home environment: On the server - /etc/exports populated - in /etc/sysconfig/nfs all NFSv2 and NFSv3 options disabled - domainname in upper case in /etc/idmapd.conf - rcpidmapd running(part of nfs service, chkconfig nfs on) On the client, I have - /etc/fstab entries with nfsvers=4 - domainname in upper case in /etc/imapd.conf - rcpidmapd running(chkconfig rpcimapd on) So, as far as I can see, only the upper case for the domain as a difference (and I disabled the NFSv2/v3 options in /etc/sysconfig/nfs on the server side. But that shouldn't matter, I think..) Will see at work tomorrow. Thanks Peter On Sat, Sep 5, 2015 at 6:21 PM, Sean Crosby <richardnixonshead@gmail.com> wrote:
Hi Peter,
I have had problems in the past where idmapd either required the domain to be in upper case, or not have dots in the name
Here's my idmapd config for my working Scientific Linux 6 NFS4 config
[General] #Verbosity = 0 # The following should be set to the local NFSv4 domain name # The default is the host's DNS domain name. Domain = COEPP.ORG.AU
We have a large LDAP database too, so when idmapd runs for the first time, it can take up to a couple of minutes to change the ids from nobody to their proper ones.
Sean
On 5 September 2015 at 10:03, Peter Ross <petrosssit@gmail.com> wrote:
Hi all,
I just spin off two CentOS6 VMs to replicate a problem I had on Friday afternoon at work.
I want use NFSv4 to share folders.
Short, from memory, I have on the server:
- /etc/exports populated - domainname configured - domain in /etc/idmapd.conf - rcpidmapd running
On the client, I have - /etc/fstab entries with nfsvers=4 - SecureNFS=no in /etc/sysconfig/nfs - domainname configured - domain in /etc/idmapd.conf - rcpidmapd running
When I mount, it works, but all files belong to nobody..
What do I miss?
If I start rpcimapd in verbose, it complains about /proc/net/nfsv4/nfstoid or something similar missing(sorry, I am not there yet with my replicas) but I am not sure whether this matters. DuckDuckGo and Google did not help much yesterday.
I do not have Kerberos or LDAP configured, the firewall (2049 connection only) restricts me and I 'don't mind' that the two machines trust each other. The environment is quite isolated and under tight control.
Thanks for ideas Peter _______________________________________________ luv-main mailing list luv-main@luv.asn.au http://lists.luv.asn.au/listinfo/luv-main