Возможно ли? Вот, что у меня получается:
[popov@PopovServer ~]$ cat /etc/subuid
popov:100000:65536
[popov@PopovServer ~]$ cat /etc/subgid
popov:100000:65536
[popov@PopovServer ~]$ cat ~/.config/lxc/default.conf
lxc.network.type = veth
lxc.network.link = virbr0
lxc.network.flags = up
lxc.kmsg = 0
lxc.start.auto = 1
lxc.id_map = u 0 100000 65536
lxc.id_map = g 0 100000 65536
[popov@PopovServer ~]$ lxc-create -n test -t download -- -d centos -r 7 -a amd64
lxc: conf.c: lxc_map_ids: 3638 Missing newuidmap/newgidmap
error mapping child
setgid: Invalid argument
lxc_container: lxccontainer.c: do_create_container_dir: 767 Failed to chown container dir
lxc_container: lxc_create.c: main: 274 Error creating container test
[popov@PopovServer ~]$ cat /etc/sysctl.conf
net.ipv4.ip_forward = 1
kernel.unprivileged_userns_clone = 1
[popov@PopovServer ~]$ sudo sysctl -p /etc/sysctl.conf
[sudo] пароль для popov:
net.ipv4.ip_forward = 1
sysctl: cannot stat /proc/sys/kernel/unprivileged_userns_clone: Нет такого файла или каталога
[popov@PopovServer ~]$ uname -a
Linux PopovServer 4.18.5-1.el7.elrepo.x86_64 #1 SMP Fri Aug 24 11:35:05 EDT 2018 x86_64 x86_64 x86_64 GNU/Linux
