From owner-freebsd-questions@freebsd.org Fri Oct 2 11:01:44 2015 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id CA183A0D40B for ; Fri, 2 Oct 2015 11:01:44 +0000 (UTC) (envelope-from freebsd@qeng-ho.org) Received: from bede.qeng-ho.org (bede.qeng-ho.org [217.155.128.241]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "fileserver.home.qeng-ho.org", Issuer "fileserver.home.qeng-ho.org" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 71AF31BC8 for ; Fri, 2 Oct 2015 11:01:43 +0000 (UTC) (envelope-from freebsd@qeng-ho.org) Received: from arthur.home.qeng-ho.org (arthur.home.qeng-ho.org [172.23.1.2]) by bede.home.qeng-ho.org (8.15.2/8.15.2) with ESMTP id t92AwZg1086481; Fri, 2 Oct 2015 11:58:35 +0100 (BST) (envelope-from freebsd@qeng-ho.org) Subject: Re: auth sys and 16 group limit for NFS To: aurfalien , FreeBSD Mailing List References: From: Arthur Chance Message-ID: <560E635A.8070505@qeng-ho.org> Date: Fri, 2 Oct 2015 11:58:34 +0100 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:38.0) Gecko/20100101 Thunderbird/38.2.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 02 Oct 2015 11:01:44 -0000 On 02/10/2015 00:51, aurfalien wrote: > Hi, > > First, excuse me if this is not posted on the right list. > > I’ve been hitting this limit for a few years now, working around it > by simply managing LDAP group membership. But was curious if the > only way to fix is moving to kerberos for auth? > > Some sites say its no longer an issue in FreeBSD 9/later and newer > Linux kernels of the same vintage. > > But I am still hitting it. > > Curious of the community has some words of wisdom etc… The limit is part of the RFC specification of NFS for versions < 4. I think the usual advice is "use NFSv4" if you need more than 16 groups. I have no personal experience with NFSv4 though. > > Thanks in advance, > - aurf > > "Janitorial Services" :-) -- Those who do not learn from computing history are doomed to GOTO 1