NFS: control file/folder access using groups on the server

linux file-permissions groups mount nfs

Solution 1:

As you are thinking about local accounts, I assume that you are using AUTH_SYS based rpc authentication. This means that client sends with each request uid and gids. IOW, the nfa server just uses group membership information provided by the clients.

There are two possibilities (that I know) to fix that:

complicated one

Use RPCSEC_GSS - the kerberized access and map user principals on the server side to desired uid and gids or query a LDAP server.

simple one

Configure the server (rpc.mountd) to start with --manage-gids option that will tell the server to ignore gids provided by the client and query it locally based on the uid.

Related

Routing from mikrotik two IP addresses to same gateway
Postfix service enabled but won't start on reboot
How to scale OpenVPN when client-to-client is a must?
Apache 2 Fast CGI php issue
Zabbix 2.0: Regular Expression to extract value from a String for a trigger?
How to prevent remote access in iptables
how can I specify a list on the command line
Android ADT error, dx.jar was not loaded from the SDK folder
Compute row average in pandas
Button text toggle in jquery
How do I use setsockopt(SO_REUSEADDR)?
Multiple variables in SciPy's optimize.minimize