I'm a little (OK a LOT) lost... I'm trying to integrate a TrueNAS core server into a test Linux environment where everything uses sssd to Active directory. When I try to change the group, or set the nfsv4 acl on a file I own, I get NFS4ERR_BADOWNER or general permission denied messages.
What I've done so far:
What I've done so far:
- Downloaded TrueNAS core.
- Installed it on a Virtualbox VM with 2 virtual disks.
- Did the first configuration and set it up to have a pool named "MainPool"
- Shared that out via NFS, and set the NFS server to use v4, and allowed it to use > 16 groups.
- Verified that the NFS export is accessible and mounts as NFSv4.
- Set a static IP address, a DNS server (my AD DC), and a static route. (Seriously, why was the latter not set by DHCP, and why does DHCP override static DNS?)
- Using the web UI, I attached to the AD domain (SWTEST.LOCAL is the DNS name)
- Went into id mapping configuration and set it to use sssd's uid/gid algorithm.
- Cleared the caches as directed.
- using the console shell, I ran getent passwd and got my AD users. I then verified the UID/GID of a known account.
- Created writable storage in my pool
- created a "data" directory
- chowned the data directory to "SWTEST\\Administrator"
- chgrp'd it to "SWTEST\\Domain Users"
- Automounted the export as Linux user logged into the domain.
- did an ls -la of MainPool. The "data" directory is nobody/nobody.
- Went back into services, and reconfigured nfsv4 to use nfs3 id's.
- Restart/remount/etc.
- Now I can see the files with the right user info, and create a file. But I cannot chgrp the file to another group that I am a member of.