commit d8bb5ce6473af1c47500e18bb2224974a92f7e0e
parent 70335188ba8e10bac8c74bda7a17c8c0c2bae267
Author: Chris Bracken <chris@bracken.jp>
Date: Wed, 8 Sep 2021 14:56:54 -0700
arch: Add section on NFS mapping
Diffstat:
1 file changed, 34 insertions(+), 0 deletions(-)
diff --git a/arch_install.md b/arch_install.md
@@ -643,6 +643,40 @@ Install isync (also known as mbsync):
pacman -S isync
+### NFS support
+
+By default, NFS assumes identical user and group IDs on the client and server.
+NFSv4 can be configured to use `idmapd` to map user IDs between client and
+server, but this requires a little bit of legwork up front on the server and all
+clients.
+
+On both the client and server, edit `/etc/idmapd.conf` ensure the domain line is
+set consistently across both:
+```
+Domain = bracken.jp
+```
+
+With the default security mechanism, idmapd support is disabled. You can verify
+this by running:
+```
+cat /sys/module/nfs/parameters/nfs4_disable_idmapping
+cat /sys/module/nfsd/parameters/nfs4_disable_idmapping
+```
+
+To re-enable ID mapping, you can manually `echo N` into each of those files as
+root to temporarily re-enable it until next boot. To make these changes
+permanent across re-boots, edit `/etc/modprobe.d/nfs.conf` to contain:
+```
+options nfs nfs4_disable_idmapping=0
+options nfsd nfs4_disable_idmapping=0
+```
+
+Edit `/etc/fstab` to contain the new mounts:
+```
+# Filesystem Mountpoint Type Options Dump Pass
+servername:/path/to/directory /path/to/mountpoint nfs rw,nfsvers=4,_netdev,noauto 0 0
+```
+
### HP printer support
Next, we'll configure [CUPS][cups_guide] printer support for HP printers,
