Feature changed by: Hardy Heroin (jsnel) Feature #309188, revision 4 Title: Don't require keytab file for kerberos authentication openSUSE-11.3: Unconfirmed Priority Requester: Important + openSUSE Distribution: New + Priority + Requester: Important Requested by: Todd R (theblackcat) Partner organization: openSUSE.org Description: In openSUSE, when using kerberos it requires that a keytab file be available for things like kerberized nfs.  However, not all kerberos servers are set up to provide keytabs.  Someone using openSUSE cannot access these resources using kerberos at all, as far as I have been able to find out.  It would be nice if openSUSE removed this requirement, or at least made it user-configurable whether to require it or not.  It is possible to have kerberos without this requirement since other distribution do it (or at least it was possible when these distributions were last released). + Discussion: + #1: Hardy Heroin (jsnel) (2012-07-11 18:40:51) + In Debian it is possible to add the following line to /etc/default/nfs- + common RPCGSSDOPTS="-n" And this then allows authentication without + having a krb5.keytab file. + The equivalent file under openSUSE 12.1 /etc/sysconfig/nfs does not + have this option. + I see no workaround yet. Something was suggested on the website: + http://metavo.metacentrum.cz/en/docs/storage/nfsv4/index.html (http://metavo.metacentrum.cz/en/docs/storage/nfsv4/index.html) + But under openSUSE 12.1 this no longer seems to apply. -- openSUSE Feature: https://features.opensuse.org/309188

Feature changed by: akash vishwakarma (vish_99) Feature #309188, revision 7 Title: Don't require keytab file for kerberos authentication - openSUSE-11.3: Unconfirmed + openSUSE-11.3: Rejected by akash vishwakarma (vish_99) + reject reason: openSUSE 11.3 not supported now Priority Requester: Important openSUSE Distribution: New Priority Requester: Important Requested by: Todd R (theblackcat) Partner organization: openSUSE.org Description: In openSUSE, when using kerberos it requires that a keytab file be available for things like kerberized nfs.  However, not all kerberos servers are set up to provide keytabs.  Someone using openSUSE cannot access these resources using kerberos at all, as far as I have been able to find out.  It would be nice if openSUSE removed this requirement, or at least made it user-configurable whether to require it or not.  It is possible to have kerberos without this requirement since other distribution do it (or at least it was possible when these distributions were last released). Discussion: #1: Hardy Heroin (jsnel) (2012-07-11 18:40:51) In Debian it is possible to add the following line to /etc/default/nfs- common RPCGSSDOPTS="-n" And this then allows authentication without having a krb5.keytab file. The equivalent file under openSUSE 12.1 /etc/sysconfig/nfs does not have this option. I see no workaround yet. Something was suggested on the website: http://metavo.metacentrum.cz/en/docs/storage/nfsv4/index.html (http://metavo.metacentrum.cz/en/docs/storage/nfsv4/index.html) But under openSUSE 12.1 this no longer seems to apply. #2: Oliver Mössinger (olivpass) (2015-05-26 10:45:04) In openSUSE 13.2 you can find this: cat /etc/sysconfig/nfs ... ## Path: Network/File systems/NFS server ## Description: Extra options for gssd ## Type: string ## Default: "" # # Normally gssd does not require any options. In some circumstances, # - n, -l or other options might be useful. See "man 8 rpc.gssd" for # details. Those options can be set here. GSSD_OPTIONS="" -- openSUSE Feature: https://features.opensuse.org/309188