On Fri, Sep 2, 2011 at 4:12 AM, Marc Bevand <no-re...@opensolaris.org> wrote: > On my domain controller, I created an AD user account plus a keytab file for > this account using ktutil.exe, which was then copied to the Linux NFSv4 > client as /etc/krb5.keytab. This client has the standard Kerberos tools > installed and is "seen" as being a Windows AD user by any Kerberized network > service. > > I think you are right, the username must be carried in some earlier NFSv4 > packets I did not look at... Will inspect in more details later.
If you have Kebreros creds issued by AD then you should be able to create files on a Solaris 11+ NFSv4 server and have the correct ownership show up (i.e., the Windows user's SID, or the Unix UID that you map it to, if any). However, ls -l and getacl on Linux may not work right at all. Linux has its own ID mapping story, and IIRC it's not really supported in the Linux NFSv4 stack (but don't quote me on that; instead RTFM and see if there's something you can do about this :). Nico -- _______________________________________________ cifs-discuss mailing list cifs-discuss@opensolaris.org http://mail.opensolaris.org/mailman/listinfo/cifs-discuss
