Applies to: All versions of DirectControl with Microsoft NFS Server
Problem:
After following the whitepaper on "
Using DirectControl with Microsoft NFS Server", root users cannot be seen to map.
Cause:
This is because adclient ignores users with UID 0, GID 0, the name
root, and the groups
wheel and
root from Active Directory.
Resolution:
Before following the steps in the document, do the following:
- Edit /etc/centrifydc/user.ignore and comment out "root".
- Edit /etc/centrifydc/group.ignore and comment out "root, wheel".
- Edit /etc/centrifydc/centrifydc.conf, un-comment and set the parameter
nss.squash.root: false
Then run adflush, adreload and restart adclient.