Comments on: Delving into NFS and Automounts http://blog.scottlowe.org/2006/10/27/delving-into-nfs-and-automounts/ The weblog of an IT pro specializing in virtualization, storage, and servers Thu, 20 Nov 2008 17:20:01 +0000 http://wordpress.org/?v=2.6 By: slowe http://blog.scottlowe.org/2006/10/27/delving-into-nfs-and-automounts/#comment-20051 slowe Tue, 23 Jan 2007 04:13:51 +0000 http://blog.scottlowe.org/?p=350#comment-20051 David, I must admit that I have not read Microsoft's official instructions. I understand the idea of mapping UID/GID to Windows username and SID; that part makes sense. I think more than anything it was just Microsoft's specific implementation that was throwing me off. I eventually got it working as I expected; see this article for more information: http://blog.scottlowe.org/2006/11/21/greater-ad-integration-via-nfs-and-automounts/ Thanks, Scott David,

I must admit that I have not read Microsoft’s official instructions. I understand the idea of mapping UID/GID to Windows username and SID; that part makes sense. I think more than anything it was just Microsoft’s specific implementation that was throwing me off.

I eventually got it working as I expected; see this article for more information:

http://blog.scottlowe.org/2006/11/21/greater-ad-integration-via-nfs-and-automounts/

Thanks,
Scott

]]> By: David Magda http://blog.scottlowe.org/2006/10/27/delving-into-nfs-and-automounts/#comment-20046 David Magda Tue, 23 Jan 2007 03:09:34 +0000 http://blog.scottlowe.org/?p=350#comment-20046 Have you looked at Microsoft's official instructions? http://www.microsoft.com/technet/interopmigration/unix/sfu/nfsauth.mspx RPC is used for NFS, and in the RPC protocol the AUTH_UNIX authentication mechanism is used to pass user information. The UID and GID numbers (integers) are what's sent along, not username and group strings. So (AFAIK) when the Windows NFS server gets the RPC, it looks at the UID, looks up the Unix username and then maps that to a Windows username / SID. The SID is then what determines whether the operation is allowed. This is mostly an educated guess as I've never used used Windows NFS, but it seems logical. Have you looked at Microsoft’s official instructions?

http://www.microsoft.com/technet/interopmigration/unix/sfu/nfsauth.mspx

RPC is used for NFS, and in the RPC protocol the AUTH_UNIX authentication mechanism is used to pass user information. The UID and GID numbers (integers) are what’s sent along, not username and group strings. So (AFAIK) when the Windows NFS server gets the RPC, it looks at the UID, looks up the Unix username and then maps that to a Windows username / SID. The SID is then what determines whether the operation is allowed.

This is mostly an educated guess as I’ve never used used Windows NFS, but it seems logical.

]]>