[Bug 335858] Re: rpc.idmapd does not see LDAP users (nfs4 server)

aaron thomas athomas at lbl.gov
Thu Jun 12 07:15:52 UTC 2014 

The previous comparison was to explain that the NFSv4 configurations are
(pretty basic) working as expected, as they're identical on both
systems, the only change is whether or not the server itself is getting
users from LDAP or NIS, and both LDAP and NIS configurations are also
working fine, as users can log in. create local files with the correct
permissions, enter passwords, etc. The missing part is that idmapd does
nothing when the underlying system is using ldap instead of nis or
/etc/passwd.

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to nfs-utils in Ubuntu.
https://bugs.launchpad.net/bugs/335858

Title:
  rpc.idmapd does not see LDAP users (nfs4 server)

Status in “nfs-utils” package in Ubuntu:
  Confirmed

Bug description:
  My setup:

  Server (Ubuntu 8.04):
    Kerberos server for authentication
    OpenLDAP server for user and group data
    NFS 4 kernel server for home directories

  Client (Ubuntu 8.04, 8.10, 9.04 alpha)
    libpam-krb5 for authentication
    libnss-ldap for user and group data
    nfs4 client for home directories

  My problem: If I restart both server and client, at the client all
  nfs4 files/directories are reported to belong to nobody:nogroup

  The problem disappears immediately, if I do

    server: killall rpc.idmapd && /usr/sbin/rpc.idmapd

    client: /etc/init.d/nscd restart
      (I removed nscd entirely while I was looking for a solution)

  To summarize: the cause of the problem is rpc.idmapd on the server,
  which for some reasons can't map LDAP user/group names with uids/gids
  when started. Perhaps libnss-ldap is not yet active? (nfs-common has
  an order number of 20, slapd 19, so this should be OK.)

  My workaround is a small initv script (on the server) with order
  number 21, which contains

    /usr/bin/killall rpc.idmapd && /usr/sbin/rpc.idmapd

  I guess my problem has to do with another problem (slightly different
  setup, though) reported here:

  http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=502292
  (see also http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=500778)

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/nfs-utils/+bug/335858/+subscriptions

More information about the foundations-bugs mailing list