NFS (Network File System) protocol
NFS stands for Network File System protocol. This page will serve as an entry point for all things NFS within CSCF.NFS Filesystems using K"> Mounting NFS Filesystems using Kerberos Security
A preliminary examination of http://nfsworld.blogspot.com/2005/06/using-active-directory-as-your-kdc-for.html
would seem to be advisable.
This section is incomplete and assumes you have the general notes
AD interaction with UNIX.
Questions include whether the NFS server still has to have general host permissions setup, i.e.,
based only on IP addresses?
- Run
apt-get install nfs-common. - Edit
/etc/default/nfs-commonand set bothNEED_IDMAPDandNEED_GSSDtoyes. - Create an account in AD representing the
nfsservice principal and generate a keytab file. - Merge the keytab file with
/etc/krb5.keytab:
# ktutil
ktutil: rkt /location/of/nfs-keytab
ktutil: l
slot KVNO Principal
---- ---- ---------------------------------------------------------------------
1 2 nfs/krbtux.student.cs.uwaterloo.ca@STUDENT.CS.UWATERLOO.CA
ktutil: wkt /etc/krb5.keytab
ktutul: quit
# ktutil
ktutil: rkt /etc/krb5.keytab
ktutil: l
slot KVNO Principal
---- ---- ---------------------------------------------------------------------
1 2 host/krbtux.student.cs.uwaterloo.ca@STUDENT.CS.UWATERLOO.CA
2 2 nfs/krbtux.student.cs.uwaterloo.ca@STUDENT.CS.UWATERLOO.CA
ktutil: quit
- Mount a file system with something like
mount -t nfs -o sec=krb5 fileserver:/path /path
External Links
- http://en.wikipedia.org/wiki/Network_File_System_(protocol)
- http://blogs.netapp.com/eislers_nfs_blog/ Eisler's NFS blog
- http://nfs.sourceforge.net/ - the Linux source of NFS
- http://whitepapers.silicon.com/publisher/39035583/network-appliance-netapp.htm - requires registration
- http://whitepapers.silicon.com/0,39024759,60292087p,00.htm - Technical Report: Using the Linux NFS Client With Network Appliance Filers
- http://www.math.ualberta.ca/imaging/snfs/ tunneling over ssh tunnel
- http://mars.netanya.ac.il/~unesco/cdrom/LDP/NFS/HTML_FORMAT/NFS-HOWTO-6.html
- http://www.howtoforge.com/nfs_ssh_tunneling - Secure NFS: Tunneling NFS over ssh
Topic revision: r3 - 2008-06-13 - WalterTautz
Information in this area is meant for use by CSCF staff and is not official documentation, but anybody who is interested is welcome to use it if they find it useful.
- CF Web
- CF Web Home
- Changes
- Index
- Search
- Administration
- Communication
- Hardware
- HelpDeskGuide
- Infrastructure
- InternalProjects
- Linux
- MachineNotes
- Macintosh
- Management
- Networking
- Printing
- Research
- Security
- Software
- Solaris
- StaffStuff
- TaskGroups
- TermGoals
- Teaching
- UserSupport
- Vendors
- Windows
- XHier
- Other Webs
- My links
 |
|
Copyright © 2008-2024 by the contributing authors. All material on this collaboration platform is the property of the contributing authors. Ideas, requests, problems regarding TWiki? Send feedback