I am having significant problem with NIS and enhanced security. I found the
following on the archives, but I could not find a summary:
>
> NIS + Enhanced Security Setup on OSF/1 v3.0 - help !!
>
> r oxbrow (r.oxbrow_at_ee.mu.OZ.AU)
> Fri, 07 Oct 1994 23:04:32 +1000
>
> Hi,
> I'm trying to run Enhanced Security and NIS on DEC alpha's running
> OSF/1 v3.0 and have run into a few problems.
>
> The steps i followed were:-
>
> 1. Setup enhanced security on the server.
> 2. Setup NIS on the server with secure mode turned on (-s,S)
> (copying /etc/passwd (minus root) to /var/yp/src)
>
> 3. Edited /etc/svc.conf and added the line
> (The NIS install procedured added in the other lines by itself)
>
> auth local yp
>
> 4. I followed a similar procedure on the client(s) - except NIS
> runs in client in mode.
>
> After this has been completed i find that i can logon to the server but
> none of the clients, i assume this is because the server contains my passwd
> file in /tcb and is read via the "local" hook in /var/yp. However on the
> client machines i'm unable to login with my password.
>
> What i would like to know is how does NIS and Enhanced security
> interact, eg. where are the passwd used by NIS kept ? And does anybody
> have a document describing how to setup both NIS and Enhanced security
> (how do XIsso and XSysAdmin work with NIS, eg do clients also need /tcb
> enteries for all the users as well - is that a manual operation)
>
> .richard
>
> __________________________________________________________________________
> electrical & electronic engineering | INTERNET r.oxbrow_at_ee.mu.OZ.AU
> university of melbourne | r.oxbrow_at_ieee.org
> parkville 3052, victoria, australia | Phone/Fax +[613] 344 6782/6678
> ---------------------------------------------------------------------------
System:
DECStation AXP 200 4/100s & 4/166s
OSF/1 3.2
1 NIS Master and 1 NIS Slave, 26 NIS clients
The problem I am having, after doing the above setup procedures, is when a
user is created with XSysAdmin, and the user attempts to log on, I get:
Login : user
Password:
Last successful login for user: never
Last unsuccessful login for user: never
Can't rewrite protected password entry for user user
The logins never work and hang until we kill the session. I checked and
found entries for the users in /var/yp/src/passwd and /var/yp/src/prpasswd
and can even do a ypcat passwd on the slave server - but no entries are
created in /tcb/files/[a-z]. I also find that when the maps are updated on
the server, it takes ~15 minutes to push prpasswd. It also takes about 15
minutes for XSysAdmin to create a user, and the same for XIsso to modify a
user account....
Can someone explain the procedure for setting up NIS and Enhanced security
and how to get accounts added and deleted. Btw, what _is_ the procedure for
deleting accounts under this setup? I have been removing the entries from
/var/yp/src/passwd,prpasswd and re-making the maps.... Is this the only way?
I promise I will post a summary!!!
---
Paul S. Sears * sears_at_uh.edu (NeXT Mail OK)
The University of Houston * <URL:http://www.egr.uh.edu/~sears/>
Engineering Computing Center * SSI Diving Certification #755020059
System Administration * DoD#1967 '83 NightHawk 650SC
"Programming is like sex: One mistake and you support it a lifetime."
******* I do not represent the University of Houston *********
Received on Wed May 31 1995 - 19:14:55 NZST