Morning

I have been struggling with nfsidmap issue for a couple of days and
wouldn't mind a fresh eyes.

Essentially, I have a FreeIPA that has a trust relationship with AD.
The AD is on domain example-corp.example.com while FreeIPA manages
eng.example.com.  The problem is, when I login using AD account, the
nfsidmap seem to think I am on the FreeIPA account.  I have changed
the idnapd.conf to use AD domain but that doesn't help.

vi /etc/idmapd.conf

Domain = example-corp.example.com



[william@cacti ~]$ ssh 'william@example-corp'@platinum.eng.example.com

william@example-c...@platinum.eng.example.com's password:

Last login: Tue Aug 23 11:45:33 2016 from 192.168.20.28

[will...@example-corp.example.com@platinum ~]$ env | grep USER

USER=will...@example-corp.example.com

[will...@example-corp.example.com@platinum ~]$ su

Password:

[root@platinum william]# tail /var/log/messages

Aug 26 08:18:13 platinum nfsidmap[17780]: nss_getpwnam: name
'r...@eng.example.com' does not map into domain
'example-corp.example.com'

Aug 26 08:18:13 platinum nfsidmap[17784]: nss_getpwnam: name
'will...@eng.example.com' does not map into domain
'example-corp.example.com'

-- 
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-users
Go to http://freeipa.org for more info on the project

Reply via email to