NFSv4 with sec=krb5 mounts not working under Solaris
Erich Weiler
weiler at soe.ucsc.edu
Thu May 25 19:23:26 EDT 2006
Hi All,
I've been beating my head against this for a while now and thought I'd
post here to see if anyone knows where I'm going wrong. I installed
MIT's Kerberos on my Solaris 10 box, using krb5 to authenticate against
a Kerberos server running Fedora Core 5. Works great, I can SSH in to
my Solaris 10 client and get a ticket and things are groovy.
What I'd like to do now is mount an NFSv4 mount from that same Fedora
Core 5 box with sec=krb5 as a mount option. What I did:
1: On the Solaris 10 client, I ran kadmin:
kadmin: addprinc -randkey nfs/solaris10host.domain.com
kadmin: ktadd -e des-cbc-crc:normal nfs/solaris10host.domain.com
/etc/krb5.keytab file was created successfully. Then, as root on
solaris10host:
% mount -F nfs -o vers=4 -o sec=krb5 nfs4server:/ /mnt
nfs mount: mount: /mnt: Permission denied
Can't figure out where I'm going wrong. Does anyone have any ideas?
Thanks a million in advance,
erich
More information about the Kerberos
mailing list