Hello,

I’ve got FreeIPA setup where I have multiple domains for client machines depending on their geography.

For example, ca.example.com, and ny.example.com. 

I have a NFS server in nfs-server.ny.example.com and users mapping the NFS server on their clients from ny.example.com and ca.example.com. Users in ny.example.com show files owner:group just fine but users in ca.example.com everything on the nfs server shows nobody:nogroup or nobody: 4294967294

On the clients I’m seeing this issue on I see these error messages in the log.

Oct  4 16:53:14 aiml1 nfsidmap[7867]: nss_getpwnam: name ‘user@ny.example.com' does not map into domain 'ca.example.com’

I did some googling and people are saying to add the domain to /etc/idmapd.conf but since I already have multiple domains (3 actually) I don’t see how this will work for all instances unless I can add multiple domains. I don’t see an obvious way to add multiple domains.

Is there a clean way to handle this?