Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: NIS to Active Directory Migration
Top Forums UNIX for Dummies Questions & Answers NIS to Active Directory Migration Post 302710705 by barcode2328 on Thursday 4th of October 2012 05:18:26 PM
Old 10-04-2012
NIS to Active Directory Migration
Hello,

This is my first ever post on Unix anything Smilie. I really am a total newb when it comes to Unix. I am fairly well versed in the Windows world though.
I have a project that I was pulled into which consists on migrating our Unix servers from authenticating with NIS, over to authenticating with Active Directory (company audit policy). All of the users already have user IDs in active directory for separate Windows accounts. There are over a 1000 users that we will have to migrate.
The main issue is that there are a lot of folder/files on these servers that are access controlled by NIS and when we migrate, we would need these controlled by AD (I believe). I'm sure that there are a ton of groups and files that would need this migration applied to them. What is the best way to go about this?
Some one threw out the option to use UNAB to help us out. What do you think about this tool? Is there others that would do a better job? Is there better ways to go about the whole thing? Any help would be appreciated. Thanks
 

8 More Discussions You Might Find Interesting

1. Windows & DOS: Issues & Discussions

unix and active directory

Hi Does anybody know the steps and requirements of the installation process of Windows Active Directory using Unix/Linux Bind DNS. I will appreciate if somebody gives the answer. (1 Reply)
Discussion started by: Darwin Rodrigue
1 Replies

2. UNIX for Dummies Questions & Answers

Active Directory and UNIX

Hello - I have a very vague question, which will probably result in vague answers because I don't have a lot of detailed information and I don't know a whole lot about active directory. Our Windows/NT admin has been rolling out Active Directory over the past several weeks and as time goes on,... (1 Reply)
Discussion started by: rm -r *
1 Replies

3. UNIX for Dummies Questions & Answers

setup active directory

i would like to ask about unix with active directory..actually my situation is at ny place there already have dns server in unix based,i want to implement an active directory to the network..from what i read about active directory we have to used bind dns...some say that bind could not handle in... (1 Reply)
Discussion started by: nour
1 Replies

4. HP-UX

HP-UX authenticating to Active Directory

Hey, I've asked questions about this project here before and gotten lots of help so I figured I'd give it another try. I've recently set up my HP-UX environment to authenticate to a Windows Active Directory server (Windows Server 2003 R2). I setup an account on Active Directory which works... (2 Replies)
Discussion started by: Rike255
2 Replies

5. Red Hat

ldap and active directory

Hi Friends, I need your help to get some solution of one of my problem. Ours is a mixed domain. Most of the servers are windows and very little linux servers. We are using the MS AD for authentication. My problem is, I want to authenticate linux servers against AD. I donot want to use any... (1 Reply)
Discussion started by: arumon
1 Replies

6. UNIX for Advanced & Expert Users

Active Directory with 6.1

Is there anyone who is utilizing Active Directory (2008R2) for AIX user account management? If yes or if AD is possible with AIX systems, can you please share what to be done to get there? Please advise. (1 Reply)
Discussion started by: Daniel Gate
1 Replies

7. Solaris

Experience sharing and questions for NIS migration from Solaris 8 to Linux

I'd like to share some experiences and what I found for NIS migration from Solaris 8 NIS to Linux platform. I'm not an expert for both platforms, it's just when I tested both systems and found something really tricky. That might takes a lot of time for you to find the root cause. So, I think I can... (11 Replies)
Discussion started by: bestard
11 Replies

8. UNIX for Beginners Questions & Answers

Active Directory OR LDAP

Hi, How can we check users added through LDAP or AD. Users added through a group of AD or LDAP group. (2 Replies)
Discussion started by: Nishit
2 Replies

LEARN ABOUT SUNOS

nisping

nisping(1M)															       nisping(1M)

NAME

       nisping - send ping to NIS+ servers

SYNOPSIS

       /usr/lib/nis/nisping [-uf] [-H hostname] [-r | directory]

       /usr/lib/nis/nisping -C [-a] [-H hostname] [directory]

       In  the	first	line,  the  nisping command sends a ``ping'' to all replicas of an NIS+ directory. Once a replica receives a ping, it will
       check with the master server for the directory to get updates. Prior to pinging the replicas, this command attempts to determine  the  last
       update  "seen"  by  a  replica and the last update logged by the master. If these two timestamps are the same, the ping is not sent. The -f
       (force) option will override this feature.

       Under normal circumstances, NIS+ replica servers get the new information from the master NIS+ server within a short time. Therefore,  there
       should not be any need to use nisping.

       In  the	second	 line, the nisping -C command sends a checkpoint request to the servers. If no directory is specified, the home domain, as
       returned by nisdefaults(1), is checkpointed. If all directories, served by a given server, have to be checkpointed, then use the -a option.

       On receiving a checkpoint request, the servers would commit all the updates for the given directory from the table log files to	the  data-
       base  files.  This  command,  if  sent to the master server, will also send updates to the replicas if they are out of date. This option is
       needed because the database log files for NIS+ are not automatically checkpointed. nisping should be used at frequent  intervals  (such	as
       once  a day) to checkpoint the NIS+ database log files. This command can be added to the crontab(1) file. If the database log files are not
       checkpointed, their sizes will continue to grow.

       If the server specified by the -H option does not serve the directory, then no ping is sent.

       Per-server and per-directory access restrictions may apply; see nisopaccess(1). nisping uses NIS_CPTIME	and  NIS_PING  (resync	(ping)	of
       replicas),  or  NIS_CHECKPOINT  (for  checkpoint).  Since the NIS_PING operation does not return a status, the nisping command is typically
       unable to indicate success or failure for resyncs.

       -a	       Checkpoint all directories on the server.

       -C	       Send a request to checkpoint, rather than a ping, to each server. The servers schedule to commit all  the  transactions	to
		       stable storage.

       -H hostname     Only the host hostname is sent the ping, checked for an update time, or checkpointed.

       -f	       Force a ping, even though the timestamps indicate there is no reason to do so. This option is useful for debugging.

       -r	       This  option  can  be  used  to	update or get status about the root object from the root servers, especially when new root
		       replicas are added or deleted from the list.

		       If used without -u option, -r will send a ping request to the servers serving the root domain. When the replicas receive  a
		       ping, they will update their root object if needed.

		       The -r option can be used with all other options except with the -C option; the root object need not be checkpointed.

       -u	       Display the time of the last update; no servers are sent a ping.

       -1	       No servers were contacted, or the server specified by the -H switch could not be contacted.

       0	       Success.

       1	       Some, but not all, servers were successfully contacted.

       Example 1: Using nisping

       This example pings all replicas of the default domain:

       example% nisping

       Note that this example will not ping the org_dir and groups_dir subdirectories within this domain.

       This example pings the server example which is a replica of the org_dir.foo.com. directory:

       example% nisping -H example org_dir.foo.com.

       This example checkpoints all servers of the org_dir.bar.com. directory.

       example% nisping -C org_dir.bar.com.

       NIS_PATH 	       If  this  variable  is  set,  and  the NIS+ directory name is not fully qualified, each directory specified will be
			       searched until the directory is found.

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWnisu			   |
       +-----------------------------+-----------------------------+

       crontab(1), nisdefaults(1), nisopaccess(1), nislog(1M), nisfiles(4), attributes(5)

       NIS+ might not be supported in future releases of the SolarisTM Operating Environment. Tools to aid the migration from  NIS+  to  LDAP  are
       available in the Solaris 9 operating environment. For more information, visit http://www.sun.com/directory/nisplus/transition.html.

								    12 Dec 2001 						       nisping(1M)
All times are GMT -4. The time now is 08:56 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy