Bo Lind via FreeIPA-users wrote:
Hi
I'm trying very hard to find resources for how to set up ACLs on NFS with IdM provided identities.
Things work fine with local users and groups, but the translation service (idmapd?) is causing me trouble.
For reference, I'm running Rocky Linux 8.9 (equivalent to RHEL 8.9).
It's been a million years since I did any NFS work but from memory idmapd.conf is configured with the domain by default. The default mapping method is nsswitch.conf. So assuming the domain is correct it should just work.
I assume you ran ipa-client-automount on the NFS clients to configure idmapd.conf?
rob