Thanks to:
eisenman_at_beta.tricity.wsu.edu
Hannu Visti <visti_at_som.fi>
Mr. Eiseman was kind enough to point me to the right manual. The
Security Manual has the basic procedure for setting up C2 and NIS.
This helped me with my initial mistake. You should turn on C2
FIRST, then NIS. (Not the order they appear in the checklist!)
The second problem was not answered by the Manual, but by Hannu
Visti. It seems that the auto scripts create and initial prpasswd
table for the C2 shadow hashed entries,BUT does not modify the YP
Makefile to add the table to the update list. So you get a false
warm-fuzzy when you do a ypcat of prpasswd and there is some data,
but a big question mark when you update the data and nothing
happens. So I added prpasswd to the Makefile and things work OK.
Other things to check:
-There should be a "+:" as the last entry in the group and passwd files in etc.
-There should be a "auth=yp,local" entry in /etc/svc.conf
(The manual suggests making it local,yp. I reversed it as per Hannu's suggestion.)
-/etc/sia/matrix.conf should be pointing at NIS info not BSD.
(Checkout man on it for specifics)
I believe all of these other things are handled by the C2 and NIS
startup scripts, but if you're having problems you may want to check
them out.
Thanks all for you time end especially those who replied.
Karl D. Liebert
********************Original Query*******************************
Hello all,
I am doing a new install of DU 4.0 on aa Alpha 3000/700.
All has gone smoothly except NIS.
-I have turned on C2 security.
-I ran nissetup with both the "s" and "S" options on.
When a new users added under NIS users tries to log in it fails.
Also if root su's to that name I get a no such user message.
I have checked the /etc/sia/matrix.conf, /etc/svc.conf files.
both the passwd and group files have the "+:" line appended as
per the directions.
I CAN do an niscat and see all the new information. It
appears that the system is not checking the NIS tables at all.
I beleive my problem lies in having C2 turned on. Or the
sequence in which I started C2 and NIS.
Any ideas, tips, help, debug checklist would be appreciated.
Thanks,
Karl
kliebert_at_kgo.csc.com
Received on Mon Mar 17 1997 - 15:05:53 NZST