[CentOS] nobody:nobody

Wed Apr 3 21:29:45 UTC 2019
Gordon Messmer <gordon.messmer at gmail.com>

On 4/3/19 2:17 PM, Mark LaPierre wrote:
> Content of idmapd.conf:

As long as idmapd is *running* it typically doesn't need to be 
configured specifically.

> Now one more question.  The imap daemon is a mail server.  How is it 
> that I need a mail server running to make LDAP and NFS work?  Doesn't 
> seem to make sense to me.

idmapd is not imapd.  idmapd (aka rpc.idmapd) is a helper for NFSv4 
which should be run on the server.  It shouldn't be required on the client.

A couple of points: 1) Your original message isn't specific about the 
problem that you're seeing, but if idmapd is involved, then the problem 
isn't related to LDAP.   NFSv4 will work the same way whether you're 
using NIS or LDAP.  Pretty much everything other than NSS and PAM will, 
in fact.  2) I don't recommend rolling your own LDAP services.  It's 
very easy to let sensitive information leak.  Using FreeIPA for LDAP and 
KRB5 is much easier and a lot more secure.