[CentOS] nobody:nobody

Wed Apr 3 22:08:43 UTC 2019
Benjamin Hauger <hauger at noao.edu>

NFSv4 in RHEL/CentOS 6.x uses libnfsidmap as a sort of add-on module. I 
believe the package you need is nfs-utils-lib.

[root at x ~]# cat /etc/redhat-release
Red Hat Enterprise Linux Server release 6.6 (Santiago)
[root at x ~]# ll /etc/idmapd.conf
-rw-r--r-- 1 root root 3601 Dec  6  2012 /etc/idmapd.conf
[root at pollux2 ~]# rpm -qf /etc/idmapd.conf
nfs-utils-lib-1.1.5-9.el6.x86_64
[root at x ~]# rpm -ql nfs-utils-lib
/etc/idmapd.conf
/usr/lib64/libnfsidmap.so.0
/usr/lib64/libnfsidmap.so.0.3.0
/usr/lib64/libnfsidmap/nsswitch.so
/usr/lib64/libnfsidmap/static.so
/usr/lib64/libnfsidmap/umich_ldap.so
/usr/lib64/librpcsecgss.so.3
/usr/lib64/librpcsecgss.so.3.0.0
/usr/share/doc/nfs-utils-lib-1.1.5
/usr/share/doc/nfs-utils-lib-1.1.5/libnfsidmap-0.24
/usr/share/doc/nfs-utils-lib-1.1.5/libnfsidmap-0.24/AUTHORS
/usr/share/doc/nfs-utils-lib-1.1.5/libnfsidmap-0.24/ChangeLog
/usr/share/doc/nfs-utils-lib-1.1.5/libnfsidmap-0.24/NEWS
/usr/share/doc/nfs-utils-lib-1.1.5/libnfsidmap-0.24/README
/usr/share/doc/nfs-utils-lib-1.1.5/librpcsecgss-0.18
/usr/share/doc/nfs-utils-lib-1.1.5/librpcsecgss-0.18/AUTHORS
/usr/share/doc/nfs-utils-lib-1.1.5/librpcsecgss-0.18/ChangeLog
/usr/share/doc/nfs-utils-lib-1.1.5/librpcsecgss-0.18/NEWS
/usr/share/doc/nfs-utils-lib-1.1.5/librpcsecgss-0.18/README
/usr/share/man/man3/nfs4_uid_to_name.3.gz
/usr/share/man/man5/idmapd.conf.5.gz

Regards,
Ben

On 4/3/19 2:51 PM, Mark LaPierre wrote:
> On 4/3/19 5:29 PM, Gordon Messmer wrote:
>> On 4/3/19 2:17 PM, Mark LaPierre wrote:
>>>
>>> Content of idmapd.conf:
>>
>>
>> As long as idmapd is *running* it typically doesn't need to be 
>> configured specifically.
>>
>>
>>> Now one more question.  The imap daemon is a mail server.  How is it 
>>> that I need a mail server running to make LDAP and NFS work?  Doesn't 
>>> seem to make sense to me.
>>
>>
>> idmapd is not imapd.  idmapd (aka rpc.idmapd) is a helper for NFSv4 
>> which should be run on the server.  It shouldn't be required on the 
>> client.
>>
>> A couple of points: 1) Your original message isn't specific about the 
>> problem that you're seeing, but if idmapd is involved, then the 
>> problem isn't related to LDAP.   NFSv4 will work the same way whether 
>> you're using NIS or LDAP.  Pretty much everything other than NSS and 
>> PAM will, in fact.  2) I don't recommend rolling your own LDAP 
>> services.  It's very easy to let sensitive information leak.  Using 
>> FreeIPA for LDAP and KRB5 is much easier and a lot more secure.
> 
> Thank you for your reply to my incompetent query.
> 
> Okay, I'm a bit dyslectic.  I see that I should have seen idmap but I 
> saw imap.  I missed the "d".  That leads me to another question:
> 
> I don't see a package that contains idmapd.  When I try to install it I 
> get:
> No package idmapd available.
> No package idmap available.
> 
> I don't see idmapd in the Service Configuration GUI.
> 
> rpm -qa | grep idmap
> libsss_idmap-1.13.3-60.el6_10.2.x86_64
> 
> How might one install a daemon by the name idmapd on CentOS 6?
> 

-- 

Benjamin Hauger
SysAdmin/CSDC-DMO
Rm. 94
x8371