[Samba] autofs + cifs + kerberos
Sketch
smblist at rednsx.org
Fri Sep 5 11:11:10 MDT 2014
On Fri, 5 Sep 2014, steve wrote:
> The problem is that $USER needs to be in the keytab so either add keys
> of anyone you think may need to share, or work around it.
...
> where cifsuser is the minmalist user. The cifs upcall takes care of the
> rest. Make sure you have a recent cifs-utils and that keyutils is
> populated correctly.
Doesn't autofs+mount.cifs already use cifs.upcall to read the mounting
user's credential cache in /tmp when using sec=krb5 without multiuser?
If that's the case, it doesn't seem like switching to multiuser would
change anything.
That said, I had planned to switch to multiuser eventually, but hadn't
quite figured out how to get it working with autofs. I think I understand
how to do it now (add cifsuser to /etc/krb5.keytab), so I'll try it and
see how that goes.
More information about the samba
mailing list