NFS4permissions

From MDWiki
Jump to navigationJump to search

NFS v4 Permissions

In NFS4, file permissions are based on a text user/owner name.

The NFS4 server, converts the local file uid/gid numbers into names using the local password system. Files owned by root and those for which no name can be determined and given the owner "nobody" (configurable). The NFS server then adds a domain (configurable) so that the outgoing ownship is of the form "owner@domain".

The NFS4 client receives the files with ownership in the form "owner@domain" and must map that to uid/gid numbers to implement local unix permissions. The NFS4 client requests the mapping from the server using the rpc.idmapd service. Thus the NFS4 server and client must have access to a common username database (LDAP etc).