On Tue, May 27, 2014 at 11:21:24PM +0000, Jaap wrote: > On Tue, 27 May 2014 16:54:07 -0400, J. Bruce Fields wrote: > > > You may want to look at "Credentials for UID 0" in the rpc.gssd man > > page? > > If you mean that I should run rpc.gssd with the "-n" option, in that case > I still get "Permission denied" when attempting to write to one of the > "no_root_squash" exports as root. What credentials is root using in that case? > I even tried using the machine > credentials "root/<hostname>@<REALM>" instead of "host/..." , but to no > avail. Right, I'd expect that to be mapped to nobody. You can set up a one-off mapping for a given machine credential in idmapd.conf. (If you're using rpc.svcgssd. If you're using gss-proxy I think there's similar configuration in /etc/krb5.conf.) --b. -- To unsubscribe from this list: send the line "unsubscribe linux-nfs" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html