Automount homedirectory with NFSv4 and Active Directory as Kerberos server

Latest response

Hello Folks,

We would like to use NFSv4 for user home directories.

More specifically, we already have an Active Directory (Windows 2008R2) environment for authentication (Linux and Windows clients) and would like to use the AD server as the Kerberos server.

We've used several articles that point us with a solution that almost works:

  • https://access.redhat.com/site/solutions/40440
  • http://blogs.technet.com/b/filecab/archive/2012/10/09/how-to-nfs-kerberos-configuration-with-linux-client.aspx
  • http://msdn.microsoft.com/en-us/library/aa480609.aspx
  • http://blogs.technet.com/b/filecab/archive/2010/05/13/using-kerberos-security-with-server-for-nfs.aspx
  • http://www.vanemery.com/Linux/NFSv4/NFSv4-no-rpcsec.html
  • http://jurjenbokma.com/ApprenticesNotes/ad_nfs4.html
  • http://www.techrepublic.com/blog/opensource/kerberos-authentication-with-nfsv4/1965

Our server is Redhat Enterprise 6.4 and our clients are Fedora 19.

Console sessions work fine and the user's home directory mounts fine with AutoFS. But sessions initiated with GDM, KDM, or even SSHD fail to mount the user's home directory.

W can get an SSH session working if use this setting "UsePrivilegeSeparation no". So I guess GDM, KDM, and SSHD need to have access to the user's home directory during session initialization.

Anyone have an idea what's missing?

Thank You!

Responses

Hi Luc and Jose,

I am afraid RHEL 6.4 is the main issue.

RHEL 7.5 has a much better support for NFSv4.x.

Still you need a login process that is able to request the Kerberos ticket, or the mount will fail.

Looks like a Support ticket to me.

Regards,

Jan Gerrit Kootstra

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.