From owner-freebsd-questions Fri May 17 13:27:48 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mta03-svc.ntlworld.com (mta03-svc.ntlworld.com [62.253.162.43]) by hub.freebsd.org (Postfix) with ESMTP id 37EA937B416 for ; Fri, 17 May 2002 13:27:24 -0700 (PDT) Received: from lungfish.ntlworld.com ([80.4.0.215]) by mta03-svc.ntlworld.com (InterMail vM.4.01.03.27 201-229-121-127-20010626) with ESMTP id <20020517202722.GKJM295.mta03-svc.ntlworld.com@lungfish.ntlworld.com>; Fri, 17 May 2002 21:27:22 +0100 Received: from tuatara.goatsucker.org (tuatara.goatsucker.org [192.168.1.6]) by lungfish.ntlworld.com (8.11.6/8.11.6) with ESMTP id g4HKRMV70491; Fri, 17 May 2002 21:27:22 +0100 (BST) (envelope-from scott@tuatara.goatsucker.org) Received: (from scott@localhost) by tuatara.goatsucker.org (8.12.3/8.12.3/Submit) id g4HKRLfe003740; Fri, 17 May 2002 21:27:21 +0100 (BST) (envelope-from scott) Date: Fri, 17 May 2002 21:27:21 +0100 From: Scott Mitchell To: Sergey Klusov Cc: freebsd-questions@FreeBSD.ORG Subject: Re: NIS Message-ID: <20020517212721.A352@fishballoon.dyndns.org> References: <16731302550.20020517171658@geoseis.t72.ru> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <16731302550.20020517171658@geoseis.t72.ru>; from shy@geoseis.t72.ru on Fri, May 17, 2002 at 05:16:58PM +0600 X-Operating-System: FreeBSD 4.6-PRERELEASE i386 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Fri, May 17, 2002 at 05:16:58PM +0600, Sergey Klusov wrote: > Hello > > I'm trying to setup a FreeBSD as a NIS server and Solaris 8 as a > NIS client, it looks like that client can get any info of the > imported users, except password > that is then i become a root on solaris box and then su - > nis_user > it works, but if i try to logon as nis_user it fails > > Anyone tried such config? I haven't, although one of these days I do want to get our Solaris boxen into the same NIS domain as the BSD/Linux machines. Anyway, your problem is probably shadow passwords -- when Solaris sees an invalid password in the 'passwd' map I believe it attempts to look up the real password in 'passwd.adjunct', whereas your FreeBSD server keeps the shadow passwords in 'master.passwd'. Linux is different again, expecting to to find the shadow passwords in the 'shadow' map. To get our Linux clients to talk to the FreeBSD server I had to extend /var/yp/Makefile to create the 'shadow' map as well as 'master.passwd'. Search the freebsd-hackers archive for "FreeBSD NIS serving linux clients" for details, including the Makefile patches. You can probably do somethig similar to support Solaris, if you can find out what format the passwd.adjunct map has. Google throws up plenty of hits, including manpages, so that shouldn't be too hard to do. HTH, Scott -- =========================================================================== Scott Mitchell | PGP Key ID | "Eagles may soar, but weasels Cambridge, England | 0x54B171B9 | don't get sucked into jet engines" scott.mitchell@mail.com | 0xAA775B8B | -- Anon To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message