ACL's with NFSv4

Discussion in 'Linux Networking' started by Joni, Dec 23, 2005.

  1. Joni

    Joni Guest

    Hi all!

    The situation is as follows: I have a machine with an ext3 partition
    with POSIX ACL's. Now I would like to export this partition to another
    machine as such that the homedirs on the source machine are available on
    the target machine including ACL's. When I try to do this through NFS
    then the ACL's are not available on target machine, and this causes the
    owner/group perms to be incorrect.

    NFSv4 apparently does support ACL's (altough they are similar to win NT
    ACL's, but according to the docs POSIX ACL's should be mappable to NFSv4
    ACL's), but I don't seem to be able to get this to work.

    Both source and target machines use the same LDAP user backend, so I
    would think there is no real need for id-mapping. On the source (server)
    machine the /etc/exports looks as below:

    /home 192.168.0.1(rw,sync,no_root_squash,fsid=0,insecure,no_subtree_check)

    and this is in the /etc/fstab file on the target (client):

    192.168.0.10:/ /home nfs4
    rw,hard,intr,proto=tcp,port=2049,noauto 0 0

    The problem is that when I mount the homedirs on the target machine, all
    directories have owner/group ownership by nfsnobody (uid=65534). Idmapd
    runs on both machines and the config is as below:

    $ cat /etc/idmapd.conf
    [General]

    Verbosity = 0
    Pipefs-Directory = /var/lib/nfs/rpc_pipefs
    Domain = localdomain

    [Mapping]

    Nobody-User = nobody
    Nobody-Group = nobody

    [Translation]
    Method = nsswitch

    What am I doing wrong?

    Thanks!
    Jonathan
     
    Joni, Dec 23, 2005
    #1
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.