Accessing Kerberos NFS version 4 (not 2, 3) via /net automounter with kinit only (no /etc/krb5.conf access)
Nico Williams
nico at cryptonector.com
Tue Apr 15 15:16:56 EDT 2014
There is nothing in NFSv4 requiring the use of any sort of client
credentials other than user credentials. However, for multi-user
clients it's important to have a credential for some session state and
for callbacks.
For single-user clients there's no need to have any device credentials
at all for NFSv4 -- if you have none then the device should use the
one user's credentials for all NFSv4 purposes.
That said, it's best practice to key all devices. Still, nothing in
NFSv4 requires such keys to be named in host-based ways.
Nico
--
More information about the Kerberos
mailing list