From owner-freebsd-questions Fri May 10 2:28:26 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mta05-svc.ntlworld.com (mta05-svc.ntlworld.com [62.253.162.45]) by hub.freebsd.org (Postfix) with ESMTP id 1CA5B37B401 for ; Fri, 10 May 2002 02:28:17 -0700 (PDT) Received: from lungfish.ntlworld.com ([80.4.0.215]) by mta05-svc.ntlworld.com (InterMail vM.4.01.03.27 201-229-121-127-20010626) with ESMTP id <20020510092815.LHQ2755.mta05-svc.ntlworld.com@lungfish.ntlworld.com>; Fri, 10 May 2002 10:28:15 +0100 Received: from tuatara.goatsucker.org (tuatara.goatsucker.org [192.168.1.6]) by lungfish.ntlworld.com (8.11.6/8.11.6) with ESMTP id g4A9SFV42423; Fri, 10 May 2002 10:28:15 +0100 (BST) (envelope-from scott@tuatara.goatsucker.org) Received: (from scott@localhost) by tuatara.goatsucker.org (8.11.6/8.11.6) id g4A9SFj23747; Fri, 10 May 2002 10:28:15 +0100 (BST) (envelope-from scott) Date: Fri, 10 May 2002 10:28:15 +0100 From: Scott Mitchell To: Eric Lam Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Basic NIS/YP Help Message-ID: <20020510102815.B14354@fishballoon.dyndns.org> References: <000001c1f7db$25ec0d90$31b2b2d1@gondor> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <000001c1f7db$25ec0d90$31b2b2d1@gondor>; from ecrim@ecrim.net on Thu, May 09, 2002 at 09:28:32PM -0700 X-Operating-System: FreeBSD 4.5-STABLE i386 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Thu, May 09, 2002 at 09:28:32PM -0700, Eric Lam wrote: > I will have a box setup that will be both a NIS/YP server and client. > > 1.) To setup this box as both server/client, I perform both steps > pertaining to server and client in the Handbook? Like, I would do all > that ypinit and adding all that "+:::::::::" to my /etc/master.passwd? Yes. Be aware that sharing passwords over NIS (especially shadow passwords) can be a real PITA if you have any non-BSD clients -- everyone does shadow passwords differently. The problems and solutions have been covered at length on this before. > 2.) How would I add a user so the user can logon to the server/client > and to other client-only boxes? Like, is there a easy way of adding the > user, having the user's /etc/master.passwd entry "exported" to > /var/yp/master.passwd? vipw -d /var/yp Then run 'make' in /var/yp to push out the updates. > 3.) Because this box is a server/client, I would point this particular > box's client to localhost, correct? I have this in my rc.conf: nis_client_flags="-S ${nisdomainname},`hostname`" which forces the NIS client to bind only to the server on the same machine, in the same domain. I believe this is the recommended way of doing things when you have master & slave servers, so that the clients on the servers don't accidentally get bound to the wrong server. It probably doesn't hurt in a single-server setup either. HTH, Scott -- =========================================================================== Scott Mitchell | PGP Key ID | "Eagles may soar, but weasels Cambridge, England | 0x54B171B9 | don't get sucked into jet engines" scott.mitchell@mail.com | 0xAA775B8B | -- Anon To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message