|
|
Sponsored Content
Top Forums
UNIX for Advanced & Expert Users
Change to NIS netgroup definition in upcoming Internet Draft
Post 302798693 by MadeInGermany on Thursday 25th of April 2013 04:17:45 AM
04-25-2013
|
|
10 More Discussions You Might Find Interesting
1. UNIX for Advanced & Expert Users
Hi@all,
I'd setup a nis server and 4 slaves. Update of passwd work's fine, but if i create a netgroup file the make all process hang by push the netgroup file.
I work with AIX 4.3.3.0 and Maintance Level 5.
Tank's for help (1 Reply)
Discussion started by: Michael
1 Replies
2. UNIX for Dummies Questions & Answers
Hi,
if I am dialling in remotely it takes a long time to launch dxaccounts on Tru64 or SAM on our HP boxes.
Can anyone tell me how to reset users NIS passwords without knowing their old password from the command line?
When I use yppasswd it prompts me for the old password even though I am... (1 Reply)
Discussion started by: sjmolloy
1 Replies
3. Solaris
All,
I have changed my machine name from A202 to B205. All I modified was /etc/hosts, /etc/nodename, hostname.ce0, /etc/net/<stuff needed to change>. But for some reason now NIS does not work. This is not the NIS server. When I telnet in I get "No directory! Logging in with home=/" when I... (4 Replies)
Discussion started by: kjbaumann
4 Replies
4. Shell Programming and Scripting
Hi All,
I need to change the UID numbers of many NIS users, is there any command to modify the UID in NIS maps ? ( like usermod) so that their file permissions will be same even with their new UID.
If not, how to check all the files owned by particular user in a computer and change the... (1 Reply)
Discussion started by: RAA
1 Replies
5. UNIX for Advanced & Expert Users
I am changing the IP on my NIS server. Are there any files that need to be changed on my other servers that are using NIS? (1 Reply)
Discussion started by: calamine
1 Replies
6. Shell Programming and Scripting
Hi,
Can anyone tell me how to change the user id in NIS.I have created a NIS user.The user id i got is that 672.The same user id is assigned to some other user.So i want to do change from 672 to 673.Can anyone help me with this one. (0 Replies)
Discussion started by: yogks
0 Replies
7. Solaris
Hi
Any body knows how to prompt user to change password on first login in a Solaris NIS client.
Thanks
HG (3 Replies)
Discussion started by: Hari_Ganesh
3 Replies
8. UNIX for Dummies Questions & Answers
Hi all,
Is there a way for me to know the NIS group and Netgroup my UNIX account? Thank you. (0 Replies)
Discussion started by: risk_sly
0 Replies
9. AIX
Hello Everybody,
I have a question regarding SLAVE NIS SERVER in aix.
We are using NIS master of Sun Solaris 9.0 which is on different subnet i.e. 10.197.93.0. And Our slave server is having AIX 5.3 installed which is on 10.207.13.0 subnet.
I have a query regarding its name and ip address... (0 Replies)
Discussion started by: jit15975
0 Replies
10. Linux
Hi there,
I am trying to set a ulimit max in the /etc/security/limits.conf against a NIS netgroup (which contains a whole bunch of users) instead of a local user or group.
so I have a NIS netgroup called +@myusers , none of whose users are defined locally on the box. I want to ensure that... (2 Replies)
Discussion started by: rethink
2 Replies
LEARN ABOUT SUNOS
netgroup
netgroup(4) netgroup(4) NAME
netgroup - list of network groups SYNOPSIS
/etc/netgroup A netgroup defines a network-wide group of hosts and users. Use a netgroup to restrict access to shared NFS filesystems and to restrict remote login and shell access. Network groups are stored in a network information services, such as LDAP, NIS, or NIS+, not in a local file. This manual page describes the format for a file that is used to supply input to a program such as ldapaddent(1M) for LDAP, makedbm(1M) for NIS, or nisaddent(1M) for NIS+. These programs build maps or tables used by their corresponding network information services. Each line of the file defines the name and membership of a network group. The line should have the format: groupname member... The items on a line can be separated by a combination of one or more spaces or tabs. The groupname is the name of the group being defined. This is followed by a list of members of the group. Each member is either another group name, all of whose members are to be included in the group being defined, or a triple of the form: (hostname,username,domainname) In each triple, any of the three fields hostname, username, and domainname, can be empty. An empty field signifies a wildcard that matches any value in that field. Thus: everything (,,this.domain) defines a group named "everything" for the domain "this.domain" to which every host and user belongs. The domainname field refers to the domain in which the triple is valid, not the domain containing the host or user. In fact, applications using netgroup generally do not check the domainname. Therefore, using (,,domain) is equivalent to (,,) You can also use netgroups to control NFS mount access (see share_nfs(1M)) and to control remote login and shell access (see hosts.equiv(4)). You can also use them to control local login access (see passwd(4), shadow(4), and compat in nsswitch.conf(4)). When used for these purposes, a host is considered a member of a netgroup if the netgroup contains any triple in which the hostname field matches the name of the host requesting access and the domainname field matches the domain of the host controlling access. Similarly, a user is considered a member of a netgroup if the netgroup contains any triple in which the username field matches the name of the user requesting access and the domainname field matches the domain of the host controlling access. Note that when netgroups are used to control NFS mount access, access is granted depending only on whether the requesting host is a member of the netgroup. Remote login and shell access can be controlled both on the basis of host and user membership in separate netgroups. /etc/netgroup Used by a network information service's utility to construct a map or table that contains netgroup information. For example, ldapaddent(1M) uses /etc/netgroup to construct an LDAP container. Note that the netgroup information must always be stored in a network information service, such as LDAP, NIS, or NIS+. The local file is only used to construct a map or table for the network information service. It is never consulted directly. nis+(1), ldapaddent(1M), makedbm(1M), nisaddent(1M), share_nfs(1M), innetgr(3C), hosts(4), hosts.equiv(4), nsswitch.conf(4), passwd(4), shadow(4) netgroup requires a network information service such as LDAP, NIS, or NIS+. Applications may make general membership tests using the innetgr() function. See innetgr(3C). Because the "-" character will not match any specific username or hostname, it is commonly used as a placeholder that will match only wild- carded membership queries. So, for example: onlyhosts (host1,-,our.domain) (host2,-,our.domain) onlyusers (-,john,our.domain) (-,linda,our.domain) effectively define netgroups containing only hosts and only users, respectively. Any other string that is guaranteed not to be a legal username or hostname will also suffice for this purpose. Use of placeholders will improve search performance. When a machine with multiple interfaces and multiple names is defined as a member of a netgroup, one must list all of the names. See hosts(4). A manageable way to do this is to define a netgroup containing all of the machine names. For example, for a host "gateway" that has names "gateway-subnet1" and "gateway-subnet2" one may define the netgroup: gateway (gateway-subnet1,,our.domain) (gateway-subnet2,,our.domain) and use this netgroup "gateway" whenever the host is to be included in another netgroup. 22 Jul 2004 netgroup(4)