Kerberised NFS
Edward Irvine
eirvine at tpg.com.au
Wed Feb 11 16:15:13 EST 2009
Hi Folks,
Is there a ticket beween client and server that expires? If so, how
does it get renewed?
Kerberised NFS presumably requires authentication and (optionally)
encryption between client and server, so presumably the client needs
to get a ticket prior to contacting the server.
I appear to be successfully using sharing out /export/home from a
server with kerberos security options, and successfully automounting
user's home directories on client machines when they log in. However,
first thing in the morning the home directories on client machines
are inaccessable (i.e. when I ssh in my home directory is
unavaliable). Restarting automountd fixes things for the rest of the
day.
This is Solaris 10 u6 on client and server, and using the Solaris 10
u6 Kerberos server. There is no NIS or LDAP naming going on (yet) -
nsswitch is to files and DNS. The mapid domain name is set in /etc/
defaults/nfs.
Any pointers greatly appreciated.
Eddie
More information about the Kerberos
mailing list