NFSV4 mounting as user (Operation not permitted)

[freedud]

New to the forums (first post) lurked for a while.

Ran in to a problem of mounting NFSV4 shares as a user from a linux NFSV4 only server.
on 13.1 client and now on fresh install on 13.2 client

root is able to mount without any extra configs using cli command or from fstab

user owns and has rw access to the mountpoint

drwxr-xr-x  5 root  wheel  - 512 Aug  7 08:49 /mnt
drwxrwxr-x  2 dan   dan    - 512 Aug  7 08:49 /mnt/temp

and is uid guid and username matched on the server

but gives an error when mounting from cli command or fstab

$mount -t nfs -o vers=4 192.168.10.10:/srv/common/temp /mnt/temp
mount_nfs: nmount: /mnt/temp: Operation not permitted

192.168.10.10:/srv/common/temp  /mnt/temp       nfs     sec=sys,vers=4,rw,noauto        0       0
$ mount /mnt/temp
mount_nfs: nmount: /mnt/temp: Operation not permitted

for user I have tried enabling (one at a time) all of the following

/etc/sysctl.conf
vfs.usermount=1
vfs.nfs.enable_uidtostring=1

/etc/rc.conf
nfs_client_enable="YES"
nfs_client_flags="-n 4"
nfsuserd_enable="YES"
nfsuserd_flags=""
nfscbd_enable="YES"
nfscbd_flags=""

All give the same result. I am stuck, and cannot find any more leads.
(and tried too many permutations of all the options i could think of)


Linux workstations mount same shares without problems.


Linux server is setup for single listening port NFSv4 tcp only operation

rpc.nfsd(without portmap(rpcbind))
rpc.mountd(with network listening disabled)
rpc.svcgssd(for those that need krb5(mit))

Thanks

 

[freedud]

Solved!!!

enabling rpcdebug on server

rpcdebug -m nfsd -s all

nfsd: request from insecure port 192.168.10.121, port=16924!

and a quick google search lead to insecure option for exports on nfs server
to allow use of ports above 1024 by the client