Sebastian Marten
2008-May-29 13:34 UTC
[CentOS] Config for NFSv4 an Kerberos on CentOS 5.1
Hi list, Is it possible to set up an NFSv4/Kerberos environment on CentOS 5.1? I set up Kerberos and NFS but get several erros "Warning: rpc.gssd appears not to be running. mount.nfs4: Permission denied" Is this an CentOS oder an config problem? Greetings Sebastian -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 542 bytes Desc: OpenPGP digital signature URL: <http://lists.centos.org/pipermail/centos/attachments/20080529/a8b3f622/attachment-0005.sig>
Quoting Sebastian Marten <sebi4711 at gmail.com>:> Hi list, > Is it possible to set up an NFSv4/Kerberos environment on CentOS 5.1? > I set up Kerberos and NFS but get several erros > > "Warning: rpc.gssd appears not to be running. > mount.nfs4: Permission denied" > > Is this an CentOS oder an config problem?Yes. Are you running all of the gss services? Is portmap running? Did you uncomment the SECURE_NFS="yes" in /etc/sysconfig/nfs? Was your kerberos principal created with: "addprinc -randkey -e des-cbc-md5:normal nfs/server.domain.com" Was your keytab entry created with: "ktadd -e des-cbc-md5:normal nfs/server.domain.com" Do you have gss/krb5p just before the nfs options in parentheses? Hope this helps. Barry
On Thu, 2008-05-29 at 15:34 +0200, Sebastian Marten wrote:> Hi list, > Is it possible to set up an NFSv4/Kerberos environment on CentOS 5.1? > I set up Kerberos and NFS but get several erros > > "Warning: rpc.gssd appears not to be running. > mount.nfs4: Permission denied"Yes, NFS4 works with Kerberos on Centos5. But the kernel only supports es-cbc-crc:normal, so when you add the key for NFS to the keytab, use: ktadd -e des-cbc-crc:normal -k /tmp/keytab nfs/myclient.mydomain> > Is this an CentOS oder an config problem? >config....