How can I grant local accounts group-rights access to NIS/NFS mount points?
Posted on 2009-04-20
I have exported "home directory" folders using NetWare 6.0 SP5 NFAP/NFS, and successfully automount them using autofs at login time, logging into SLES10 SP2.
NIS master is MS SFU 3.5 (Windows 2003 R2). (note: not my choice - corporate directive.)
I have the POSIX user and group set, and have POSIX rights of 750 applied on the mount point. I can successfully write data to the folder as the logged in user.
However, there's a process the user has to run that is owned by a different, local (non-NIS) user. That application wants to write temp files to the home directory, but is not able to.
If I add that local user to the NIS group that is on the ownership properties of the folder, it still can't write anything. Presumably, that's because that local user the process belongs to doesn't have permissions to write to that folder on the NFS server.
Making an eDirectory user with the same name as the local user in question, with the same POSIX UID, and making that user a member of the NIS group that "owns" the mount point doesn't seem to help any.
I've read something about using NIS netgroups for conferring permissions across NFS mounts, but am unsure how to go about doing that. Does anyone know anything about a) NIS/NFS and the use of NIS netgroup and b) whether that could help me in an environment where the NFS server is NetWare 6.0 SP5 NFAP/NFS, or c) is there another way to make this work?