Client authentication question
Kevin Coffman
kwc at citi.umich.edu
Mon Dec 10 11:05:11 EST 2007
What version of nfs-utils do you have? In nfs-utils-1.1.0, any
usable keytab entry will be used rather than insisting on matching the
hostname.
See the release notes:
https://sourceforge.net/project/shownotes.php?release_id=507588
Does that address your concern?
K.C.
On Dec 10, 2007 9:52 AM, Lukas Hejtmanek <xhejtman at ics.muni.cz> wrote:
> Hello,
>
> when using Kerberos for authentication, the client must possess krb5.keytab to
> be able to mount NFS volume from the server with krb extensions. However, the
> krb5.keytab is bound with the client IP and hostname. In such a case, the
> client may not migrate to another network (where he gets another IP and
> invalides krb5.keytab from the previous network). Is this a desired feature or
> something that should work (I mean the migration).
>
> Regarding the migration - I do not need live migration with mounted file
> system, I just want to be able to mount the share in any network from my home
> NFS server. Is there any solution for this if I want the kerberos
> authentication?
>
> --
> Lukáš Hejtmánek
> _______________________________________________
> NFSv4 mailing list
> NFSv4 at linux-nfs.org
> http://linux-nfs.org/cgi-bin/mailman/listinfo/nfsv4
>
>
More information about the NFSv4
mailing list