> > So I would like NFSv4 to serve user home directories across the > network for all workstations, but I would like it to protect using > user password > > Eg. on workstation I want to do: > > sudo mount -t nfs -o nfsv4 nfs4-server:/home/user1 /home/user1 > and then I want to be asked for password of user1 at server (or in the > whole network - users and passwords are stored in LDAP server > and workstation and server have access to it) > > Is it possible to do with NFSv4? > The short answer is no. The long answer is that you can require users to have valid kerberos credentials for access to an NFS volume (via v3 or v4). But that requires the setup of Kerberos and I'm not volunteering to help with that.:-) There are some good books/tutorials on setting up Kerberos and it works well, once you wade through the hassles of getting it going. (Kerberos authenticates the user for access to the server volume. It is not a host based authentication for the mount. If you choose to use Kerberos, you need to allow the user to do the mount without sudo by setting vfs.usermount=1 and then you restrict the server volume(s) with the sec= export option.) rickReceived on Mon Jan 10 2011 - 20:42:33 UTC
This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:40:10 UTC