<div dir="ltr">Can someone help me please?<br><br>I would like that anyone write the steps only with 2 machines (server ipa with nfs, and ipa client), I executed the guide but isn't make it, I think that need some steps!!.<br><br>There are 2 machines, <a href="http://server2.example.com">server2.example.com</a> (with ipa server and NFS) and <a href="http://desktop2.example.com">desktop2.example.com</a> (only with ipa-client)<br><br>My steps:<br>Server<br>After install ipa-server.<br>1) Add service with web UI<br>2) Add automount location with<br>Location=test<br>key=/jmantilla      description=-ro,soft,server2.example.com:/home/remoteusers/jmantilla<br><br>User=jmantilla<br>Home directory=/home/remoteusers/jmantilla<br><br>Configuring automount on server system<br>--Auto.master<br>/home/remoteusers       /etc/auto.ipa<br>--auto.ipa<br>jmantilla -rw   server2.example.com:/home/remoteusers/jmantilla<br><br>After<br>#kinit admin<br>I don't need to run:<br>#ipa-getkeytab -s <a href="http://server2.example.com">server2.example.com</a> -p nfs/<a href="http://server2.example.com">server2.example.com</a> -k /etc/krb5.keytab<br>#ipa-getkeytab -s <a href="http://server2.example.com">server2.example.com</a> -p nfs/<a href="http://server2.example.com">server2.example.com</a> -k /root/nfs-client.keytab<br>#(  echo rkt /root/nfs-client.keytab; echo wkt /etc/krb5.keytab) |ktutil<br>My server and client and in an IPA domain, the keytabs should only be generated to /etc/krb5.keytab on the IPA server. (Ipa domain)<br><br>Verifying<br>[root@server2 ~]# ipa service-show nfs/<a href="http://server2.example.com">server2.example.com</a><br>  Principal: nfs/<a href="mailto:server2.example.com@EXAMPLE.COM">server2.example.com@EXAMPLE.COM</a><br>  Keytab: True<br>  Managed by: <a href="http://server2.example.com">server2.example.com</a><br><br>Client<br>#kinit admin<br>#ipa-client-automount --location=test<br>#ipa-getkeytab -s <a href="http://server2.example.com">server2.example.com</a> -p nfs/<a href="http://server2.example.com">server2.example.com</a> -k /etc/krb5.keytab<br>#ipa-getkeytab -s <a href="http://server2.example.com">server2.example.com</a> -p nfs/<a href="http://server2.example.com">server2.example.com</a> -k /tmp/nfs.keytab<br>#( echo rkt /tmp/nfs.keytab; echo wkt /etc/krb5.keytab) |ktutil<br>#service rpcgssd start<br>#/etc/init.d/rpcbind restart<br>#/etc/init.d/rpcidmapd restart<br>#authconfig --update --enablesssd --enablesssdauth --enablemkhomedir<br>#/etc/init.d/sshd restart<br>#vim /etc/sssd/sssd.conf<br>...<br>[domain/<a href="http://EXAMPLE.COM">EXAMPLE.COM</a>]<br>...<br>krb5_renewable_lifetime = 50d<br>krb5_renew_interavl = 3600<br><br>#/etc/init.d/sssd restart<br><br>Testing<br>[root@server2 ~]# ssh cboyle@desktop2<br>cboyle@desktop2's password:<br>Last login: Tue Mar 17 21:13:49 2015 from <a href="http://server2.example.com">server2.example.com</a><br>-sh-4.1$ <br><br>And nothing!! (what happened)<br>What I need to do it?<br><br>Thanks<br clear="all"><div><div class="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr">  <br><div><table border="0" cellpadding="0" cellspacing="0" height="104" width="429"><tbody><tr style="height:52.55pt"><td style="width:62.1pt;padding:0cm 5.4pt;height:52.55pt" valign="top" width="83">
  <p><b><span></span><span></span></b><a href="https://www.redhat.com/wapps/training/certification/verify.html?certNumber=130-191-612&isSearch=False&verify=Verify" target="_blank"><img alt="Verificacion de certificado" src="https://encrypted-tbn2.gstatic.com/images?q=tbn:ANd9GcRoBMetKRy0iaqFZl3D2V-c-NbGDIC4Tw-JYW4qO8h8-mJj-Hk7" height="96" width="59"></a><br><font size="1">Click to verify</font><br><span style="font-size:8pt;color:rgb(31,73,125)" lang="ES"></span></p>
  </td><td style="width:311.25pt;padding:0cm 5.4pt;height:52.55pt" valign="top" width="415">
  <p><b><span style="font-size:8pt;font-family:"Verdana","sans-serif";color:rgb(66,119,48)" lang="ES-TRAD"><span style="color:rgb(0,0,0)"></span></span></b></p><p><b><span style="font-size:8pt;font-family:"Verdana","sans-serif";color:rgb(66,119,48)" lang="ES-TRAD"><span style="color:rgb(0,0,0)">Ing. José Luis Mantilla G.</span><br></span></b><span style="color:rgb(102,102,102)"><span style="font-size:8pt;font-family:"Verdana","sans-serif"" lang="ES-TRAD">Red Hat Certified Instructor / Examiner RHEL<b> </b></span><b><span style="font-size:8pt;font-family:"Verdana","sans-serif"" lang="ES-TRAD">6, 7<br></span></b><span style="font-size:8pt;font-family:"Verdana","sans-serif"" lang="ES-TRAD">RHCE - RHCV - RHCI - RHCX - RHCSA</span><b><span style="font-size:8pt;font-family:"Verdana","sans-serif"" lang="ES-TRAD"><br></span></b><span style="font-size:8pt;font-family:"Verdana","sans-serif"" lang="ES-TRAD">Developer PHP, Member TeamQA Centos</span><b><span style="font-size:8pt;font-family:"Verdana","sans-serif"" lang="ES-TRAD"><br></span></b></span><span style="color:rgb(102,102,102)"><span style="font-size:8pt;font-family:"Verdana","sans-serif"" lang="ES-TRAD">Cell phone: (1) 832-908-6210 </span></span><span dir="ltr"></span> <br><span style="color:rgb(102,102,102)"><span style="font-size:8pt;font-family:"Verdana","sans-serif"" lang="ES-TRAD">Public GPG Key = </span></span><a href="http://pool.sks-keyservers.net/pks/lookup?op=get&search=0x94DA057CFC3B3963" target="_blank">FC3B3963</a> <span style="color:rgb(102,102,102)"><span style="font-size:8pt;font-family:"Verdana","sans-serif"" lang="ES-TRAD"><br></span></span><span><span style="color:rgb(102,102,102)"><span style="font-size:8pt;font-family:"Verdana","sans-serif"" lang="ES-TRAD">United States - Houston Texas -2015</span></span></span> <br></p></td></tr></tbody></table><b></b></div></div></div></div></div></div></div></div>
</div>