by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id u7ULNSNq006624 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT) for centos@centos.org; Tue, 30 Aug 2016 17:23:29 -0400 To: centos@centos.org References: d80864bd-9497-86be-d8db-cdf3c0378d7c@mit.edu 20160829172355.849cf429eb17bf94dd738fa0@melvilletheatre.com From: Pat Haley phaley@mit.edu Message-ID: 2e155be1-9265-a189-724b-3ab2659d38dc@mit.edu Date: Tue, 30 Aug 2016 17:23:27 -0400 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.2.0 MIME-Version: 1.0 In-Reply-To: 20160829172355.849cf429eb17bf94dd738fa0@melvilletheatre.com Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFrrKIsWRmVeSWpSXmKPExsUixCmqrRv082i4wc2bKhbLzixgdmD0WNk2 mTmAMYrLJiU1J7MstUjfLoErY8oKr4I7QhWPvy9mbmC8xdfFyMkhIWAiMeHnW7YuRi4OIYE2 Jonvr+8xQTgnGSWeblnADuEcZJI4+7aHGaRFWMBB4s/PdjYQW0RAVKJn8SswW0igSuL9pIus IDabgILEultngJo5OHgFrCTurdECCbMIqErs7pjBAmKLCkRI3Fr1kRHE5hUQlDg58wlYnFPA S2LpSpBWTg5mAVuJO3N3M0PY8hLb385hnsDIPwtJyywkZbOQlC1gZF7FKJuSW6Wbm5iZU5ya rFucnJiXl1qka6aXm1mil5pSuokRFHrsLso7GF/2eR9iFOBgVOLhzZhxNFyINbGsuDL3EKMk B5OSKO+eDqAQX1J+SmVGYnFGfFFpTmrxIUYJDmYlEd7P34ByvCmJlVWpRfkwKWkOFiVx3q4Z B8KFBNITS1KzU1MLUotgsjIcHEoSvJe/AzUKFqWmp1akZeaUIKSZODhBhvMADZf8ATK8uCAx tzgzHSJ/ilFRSpz3JchWAZBERmkeXC84NaixH3rFKA70ijDvBJB2HmBaget+BTSYCWhwwZ3D IINLEhFSUg2MXoXXLeI4mYVE/+/6wH6wcoE9U0T+PJM1BlkHD9Wf0vBY8KxlmrXtvGccL6Sj 7i79srzxJr9ZlPiykLwtlgyeWz8o+dev1xDPb1llFMNy/n4Bx6+UoNfBix8Hq6552ppktzJu y4MgFr6g7y9qb/DKnzLobU95usB1rsxeP72OdVU5x4UWtz9SYinOSDTUYi4qTgQA4LNe++gC AAA= Subject: Re: [CentOS] CentOS 6: files now owned by nobody:nobody X-BeenThere: centos@centos.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: CentOS mailing list <centos.centos.org> List-Unsubscribe: https://lists.centos.org/mailman/options/centos, mailto:centos-request@centos.org?subject=unsubscribe List-Archive: http://lists.centos.org/pipermail/centos/ List-Post: mailto:centos@centos.org List-Help: mailto:centos-request@centos.org?subject=help List-Subscribe: https://lists.centos.org/mailman/listinfo/centos, mailto:centos-request@centos.org?subject=subscribe X-List-Received-Date: Tue, 30 Aug 2016 21:23:31 -0000
The setting the Domain = line in /etc/idmapd.conf option solved our problem
Thanks
On 08/29/2016 07:23 PM, Frank Cox wrote:
On Mon, 29 Aug 2016 18:59:31 -0400 Pat Haley wrote:
We noticed that all the files were owned by nobody
Here are my notes for dealing with this issue:
If all users come up as nobody on a nfs mount:
Add nfs server name to the Domain = line in /etc/idmapd.conf on both the server and the clients, i.e. Domain = nameof.server
/sbin/service rpcidmapd restart /sbin/service nfslock restart /sbin/service nfs restart
Also, the complete hostname as specified (nameof.server) must be in /etc/hosts on the nfs clients as well as the server
try /usr/sbin/nfsidmap -c on the client. Since I put this into my /etc/rc.local , I don't have the problem any longer.
- /etc/idmapd.conf
# Set domain to the domain name shared by your NFS servers. Domain: mycompany.com Set local-realms to the name of the nfs servers you'll be using. THIS WASN'T MENTIONED ELSEWHERE. Local-Realms: nfs1.mycompany.com,nfs2.mycompany.com # make the above changes on all the servers in question.
- /etc/hosts: list with all the NFS servers you specified in local-realms above. This way DNS errors don't make your servers get hung
1.2.3.4 nfs1.mycompany.com 1.2.3.5 nfs2.mycompany.com
- Make sure you synchronize your /etc/passwd files so that the account
IDs match up or you'll get very strange results.
- Reboot EVERYTHING. Restarting services was not enough.
For documentation's sake, I restarted rpcidmapd, nfslock, and nfs, but didn't get the correct permissions until reboot. It doesn't seem important to run the nfs service on the clients.
- Client mount:
# CLI /bin/mount -t nfs servername:/path/to/share /local/mount/point
# /etc/fstab servername.com:/path/to/share /local/mount/mount nfs ro,nolock 0 0
# mount -a