Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: NIS user in local group
Top Forums UNIX for Dummies Questions & Answers NIS user in local group Post 302563223 by clindseysmith on Monday 10th of October 2011 11:27:47 AM
Old 10-10-2011
NIS user in local group
I have root access on a linux (RH5.4) server within an NIS setup that I don't control. I have an NIS account that creates directories on my local node that I want to be writable by my local apache account.

The NIS account is only a member of the "users" group and the local apache account is not, nor do I want it to be. NIS account umask is set to 2, and the directories that get created are 775. I could locally change the NIS account's umask to 0 but I feel like there has to be a better solution than making the directories world-writable.

Is it possible to create a local group and locally add my NIS account and my local apache account to that group, and then make that group default for the NIS account?

How would I do that?
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

NIS group vs local group

Hi everyone, I'm new to UNIX so plz excuse me if this sounds foolish Assume there exists a group 'xyz' on the NIS as well as on the local UNIX box. And we added the user 'test' to the local group. Which group priveleges will 'test' have? do reply.. thanks, VJ. (3 Replies)
Discussion started by: vjsony
3 Replies

2. Solaris

make issue when I add some members into a NIS group on solaris 9,please help !!

Hello Sir, I want to add some members into a group on NIS domain, but when I run "/usr/ccs/bin/make group" to update the group map it was failed :-( the error message is : problem storing develop... (4 Replies)
Discussion started by: lk74612
4 Replies

3. UNIX for Advanced & Expert Users

How to prevent local root from su to an NIS user?

We have a shared development box, running Solaris 10 that is an NIS client, all the developers have local root password. If they know the NIS uid of another user, they can just do % useradd -u <uid> login And then log in as that user and have full access to his files in his home directory. ... (3 Replies)
Discussion started by: nfw
3 Replies

4. Solaris

How can i allow only a group of users in NIS?

Hello experts. I am using Solaris10. How can i allow a group of users, remaining should be deny. Thanx in advance. (9 Replies)
Discussion started by: younus_syed
9 Replies

5. UNIX for Dummies Questions & Answers

NIS Group, Netgroup

Hi all, Is there a way for me to know the NIS group and Netgroup my UNIX account? Thank you. (0 Replies)
Discussion started by: risk_sly
0 Replies

6. UNIX for Advanced & Expert Users

NIS Group Lookup Problem

I'm running a NIS on an network of Ubuntu 8.04 linux systems. I'm seeing a weird problem where the 'id' command is not returning all the groups I am a member of. For example: alex@client $ id -Gn localgroupA localgroupB nisgroup1 nisgroup2 nisgroup4 alex@client $ id -Gn alex nisgroup1... (0 Replies)
Discussion started by: vertigo23
0 Replies

7. UNIX for Advanced & Expert Users

Determining if user is local-user in /etc/passwd or LDAP user

Besides doing some shell-script which loops through /etc/passwd, I was wondering if there was some command that would tell me, like an enhanced version of getent. The Operating system is Solaris 10 (recent-ish revision) using Sun DS for LDAP. (5 Replies)
Discussion started by: ckmehta
5 Replies

8. Red Hat

NIS disabling the MAP for a local user

Hello everybody, we have a NIS User lsfadmin which gets his environment variables from the autmount /home/lsfadmin. A newer version of the application needs a different environment to launch the application. I can't change the environment of the NIS User because we use NIS company wide for... (0 Replies)
Discussion started by: sdohn
0 Replies

9. Red Hat

User is a Part of a Group But Group Details Do Not Show the User

Hi, In the following output you can see the the user "richard" is a member on the team/group "developers": # id richard uid=10247(richard) gid=100361(developers) groups=100361(developers),10053(testers) but in the following details of the said group (developers), the said user... (3 Replies)
Discussion started by: indiansoil
3 Replies

10. UNIX for Advanced & Expert Users

Pam.d and make difference between AD User and local user on Linux

Hello, i configured rhel linux 6 with AD directory to authorize windows users to connect on the system and it works. i have accounts with high privileges (oracle for example) if an account is created on the AD server i would to block him. I looked for how to do, for the moment all the... (3 Replies)
Discussion started by: vincenzo
3 Replies

LEARN ABOUT LINUX

nisserver

nisserver(1M)                                             System Administration Commands                                             nisserver(1M)

NAME

       nisserver - set up NIS+ servers

SYNOPSIS

       /usr/lib/nis/nisserver -r [-x] [-f] [-v] [-Y] [ -d NIS+_domain] [ -g NIS+_groupname] [-l network_passwd]

       /usr/lib/nis/nisserver -M [-x] [-f] [-v] [-Y] -d NIS+_domain [ -g NIS+_groupname] [ -h NIS+_server_host]

       /usr/lib/nis/nisserver -R [-x] [-f] [-v] [-Y] [ -d NIS+_domain] [ -h NIS+_server_host]

DESCRIPTION

       The   nisserver shell script can be used to set up  a root master, non-root master, and replica NIS+ server with level 2 security (DES). If
       other authentication mechanisms are configured with nisauthconf(1M), nisserver will set up a NIS+ server using those  mechanisms.  nisauth-
       conf(1M) should be used before nisserver.

       When  setting up a new domain, this script creates the NIS+ directories (including groups_dir and org_dir) and system table objects for the
       domain specified. It does not populate the tables. nispopulate(1M) must be used to populate the tables.

OPTIONS

       -d NIS+_domain          Specifies the name for the NIS+ domain.  The default is your  local domain.

       -f                      Forces the  NIS+ server setup without prompting for confirmation.

       -g NIS+_groupname       Specifies the  NIS+ group name for the new domain.  This option is not valid with -R option.  The default group  is
                               admin.<domain>.

       -h NIS+_server_host     Specifies  the  hostname  for the NIS+ server.  It must be a valid host in the local domain.  Use a fully qualified
                               hostname (for example, hostx.xyz.sun.com.) to specify a host outside of your local domain.  This  option  is   only
                               used  for setting up non-root master or replica servers. The default for non-root master server setup is to use the
                               same list of servers as the parent domain. The default for replica server setup is the local hostname.

       -l network_password     Specifies the network password with which to create the credentials for the root master  server.   This  option  is
                               only  used  for  master root server setup (-r option).  If this option is not specified, the script prompts you for
                               the login password.

       -M                      Sets up the specified host as a master server. Make sure that rpc.nisd(1M) is running  on  the  new  master  server
                               before this command is executed.

       -R                      Sets up the specified host as a replica server.  Make sure that rpc.nisd is running on the new replica server.

       -r                      Sets up the server as a root master server.  Use the -R option to set up a root replica server.

       -v                      Runs the script in verbose mode.

       -x                      Turns  the  echo mode on.  The script just prints the commands that it would have executed.  Note that the commands
                               are not actually executed.  The default is off.

       -Y                      Sets up a NIS+ server with NIS-compatibility mode.  The default is to set up the server  without  NIS-compatibility
                               mode.

USAGE

       Use  the first synopsis of the command (-r) to set up a root master server. To run the command,  you must be logged in as super-user on the
       server machine.

       Use the second synopsis of the command (-M) to set up a non-root master server for the specified domain. To run the command,  you  must  be
       logged  in  as  a NIS+ principal on a NIS+ machine and have write permission to the parent directory of the domain that you are setting up.
       The new non-root master server machine must already be an  NIS+ client (see nisclient(1M)) and have the  rpc.nisd(1M) daemon running.

       Use the third synopsis of the command (-R) to set up a replica server for both root and non-root domains. To run the command, you  must  be
       logged  in  as a NIS+ principal on a NIS+ machine and have write permission to the parent directory of the domain that you are replicating.
       The new non-root replica server machine must already be an  NIS+ client and have the  rpc.nisd daemon running.

EXAMPLES

       Example 1: Setting up Servers

       To set up a root master server for domain  sun.com.:

       root_server# /usr/lib/nis/nisserver -r -d sun.com.

       For the following examples make sure that  the new servers are  NIS+ clients and that rpc.nisd is running on these hosts  before  executing
       nisserver. To set up a replica server for the sun.com. domain on host sunreplica:

       root_server# /usr/lib/nis/nisserver -R -d sun.com. -h sunrep

       To set up a non-root master server for domain xyz.sun.com. on host sunxyz with the  NIS+ groupname as admin-mgr.xyz.sun.com.:

       root_server# /usr/lib/nis/nisserver -M -d xyz.sun.com. -h sunxyz 
       -g admin-mgr.xyz.sun.com.

       To set up a non-root replica server for domain xyz.sun.com. on host sunabc:

       sunxyz# /usr/lib/nis/nisserver -R -d xyz.sun.com. -h sunabc

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE         |      ATTRIBUTE VALUE        |
       +-----------------------------+-----------------------------+
       |Availability                 |SUNWcsu                      |
       +-----------------------------+-----------------------------+

SEE ALSO

       nis+(1),  nisgrpadm(1),  nismkdir(1),  nisaddcred(1M),  nisauthconf(1M), nisclient(1M), nisinit(1M), nispopulate(1M), nisprefadm(1M), nis-
       setup(1M), rpc.nisd(1M),  attributes(5)

NOTES

       NIS+ might not be supported in future releases of the SolarisTM Operating Environment. Tools to aid the migration from  NIS+  to  LDAP  are
       available in the Solaris 9 operating environment. For more information, visit http://www.sun.com/directory/nisplus/transition.html.

SunOS 5.10                                                          13 Dec 2001                                                      nisserver(1M)
All times are GMT -4. The time now is 06:25 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy