架设简单NIS服务器
时间:2006-12-14 来源:wsshun
软件环境:
NIS Server: redhat as4u2
NIS Client: redhat as3u4
一、NIS Server设定
1、软件包
#rpm -qa |grep yp
ypbind-1.17.2-3
yp-tools-2.8-7
ypserv-2.13-5
#rpm -qa | grep portmap portmap-4.0-63
2、启动portmap、time、timeudp服务 #chkconfig --level 35 portmap on #service portmap start #vi /etc/xinetd.d/time disable=no #vi /etc/xinetd.d/time-udp disable=no #service xinetd restart Test: #netstat -tl # netstat -utl
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State
tcp 0 0 *:time *:* LISTEN
tcp 0 0 *:sunrpc *:* LISTEN
udp 0 0 *:time *:* LISTEN
udp 0 0 *:sunrpc *:* LISTEN
3、建立NIS领域名称: # vi /etc/rc.d/rc.local /bin/nisdomainname test.local #/etc/rc.d/rc.local #vi /etc/sysconfig/network NISDOMAIN=test.local Test: #/bin/nisdomainname test.local 4、设定ypserv.conf #vi /etc/ypserv.conf 加入: 127.0.0.0/255.255.255.0 : * : * : port
192.168.1.0/255.255.255.0 : * : * : port
#touch /etc/netgroup ###建立网络信任群组 # service ypserv start
Starting YP server services: [ OK ] # service yppasswdd start
Starting YP passwd service: [ OK ] # chkconfig --level 35 ypserv on # chkconfig --level 35 yppasswdd on
Test: # rpcinfo -u localhost ypserv
program 100004 version 1 ready and waiting
program 100004 version 2 ready and waiting
# rpcinfo -u localhost yppasswdd
program 100009 version 1 ready and waiting 5、制作数据库 #/usr/lib/yp/ypinit -m ldap8.whol.local <ctrl>+d # service ypserv restart
Stopping YP server services: [ OK ]
Starting YP server services: [ OK ]
# service yppasswdd restart
Stopping YP passwd service: [ OK ]
Starting YP passwd service: [ OK ] 注:每次增加或修改用户,都需要重做数据库
二、NIS Client设定 1、启动 portmap 2、修改/etc/hosts,加入NIS Server主机解析 3、建立NIS领域名称 均同NIS Server设定
4、建立NIS查询的主机名称 # vi /etc/yp.conf domain whol.local ypserver ldap8.test.local 5、修改密码验证方式 # vi /etc/passwd 最后一行加入:(注:不要有空格) +::::::
6、vi /etc/nsswitch.conf passwd: files nis nisplus shadow: files nis nisplus group: files nis nisplus hosts: files nis dns 也可使用authconfig设定 #authconfig [*] uUse NIS [*] Use MD5 Passwords [*] Use Shadow Passwords Domain: test.local Server: ldap8.test.local 7、启动服务 #chkconfig --level 35 ypbind on #service ypbind start #rpcinfo -p localhost
program vers proto port
100000 2 tcp 111 portmapper
100000 2 udp 111 portmapper
100007 2 udp 735 ypbind
100007 1 udp 735 ypbind
100007 2 tcp 738 ypbind
100007 1 tcp 738 ypbind # yptest
Test 1: domainname
Configured domainname is "test.local" Test 2: ypbind
Used NIS server: ldap8.test.local Test 3: yp_match
WARNING: No such key in map (Map passwd.byname, key nobody) Test 4: yp_first
sshun sshun:$1$u.NiOoppp0kU7bnQBQGhK8RjVQYgRn/:602:602::/home/sshun:/bin/bash Test 5: yp_next Test 6: yp_master
ldap8 Test 7: yp_order
1166179352 Test 8: yp_maplist
protocols.bynumber
rpc.bynumber
protocols.byname
netid.byname
services.byname
hosts.byaddr
rpc.byname
ypservers
group.byname
group.bygid
mail.aliases
passwd.byname
hosts.byname
passwd.byuid
services.byservicename Test 9: yp_all
sshun sshun:$1$u.NiOoppp0kU7bnQBQGhK8RjVQYgRn/:602:602::/home/sshun:/bin/bash
出错和警告参见ref2 8、使用NFS主目录 NIS Server端: #vi /etc/exports /home 192.168.10.0/24(rw,async,no_root_squash) #exportfs -rv #service nfs start #chkconfig --level 35 nfs on NIS Client端: #vi /etc/rc.d/rc.local mount -t nfs 192.168.1.8:/home /home #mount -t nfs 192.168.1.8:/home /home ok,可以登陆了,但是 NIS 不支持 SSH,晕!!!据说NIS+可以支持。 ref1:
ref2:
yp-tools-2.8-7
ypserv-2.13-5
#rpm -qa | grep portmap portmap-4.0-63
2、启动portmap、time、timeudp服务 #chkconfig --level 35 portmap on #service portmap start #vi /etc/xinetd.d/time disable=no #vi /etc/xinetd.d/time-udp disable=no #service xinetd restart Test: #netstat -tl # netstat -utl
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State
tcp 0 0 *:time *:* LISTEN
tcp 0 0 *:sunrpc *:* LISTEN
udp 0 0 *:time *:* LISTEN
udp 0 0 *:sunrpc *:* LISTEN
3、建立NIS领域名称: # vi /etc/rc.d/rc.local /bin/nisdomainname test.local #/etc/rc.d/rc.local #vi /etc/sysconfig/network NISDOMAIN=test.local Test: #/bin/nisdomainname test.local 4、设定ypserv.conf #vi /etc/ypserv.conf 加入: 127.0.0.0/255.255.255.0 : * : * : port
192.168.1.0/255.255.255.0 : * : * : port
#touch /etc/netgroup ###建立网络信任群组 # service ypserv start
Starting YP server services: [ OK ] # service yppasswdd start
Starting YP passwd service: [ OK ] # chkconfig --level 35 ypserv on # chkconfig --level 35 yppasswdd on
Test: # rpcinfo -u localhost ypserv
program 100004 version 1 ready and waiting
program 100004 version 2 ready and waiting
# rpcinfo -u localhost yppasswdd
program 100009 version 1 ready and waiting 5、制作数据库 #/usr/lib/yp/ypinit -m ldap8.whol.local <ctrl>+d # service ypserv restart
Stopping YP server services: [ OK ]
Starting YP server services: [ OK ]
# service yppasswdd restart
Stopping YP passwd service: [ OK ]
Starting YP passwd service: [ OK ] 注:每次增加或修改用户,都需要重做数据库
二、NIS Client设定 1、启动 portmap 2、修改/etc/hosts,加入NIS Server主机解析 3、建立NIS领域名称 均同NIS Server设定
4、建立NIS查询的主机名称 # vi /etc/yp.conf domain whol.local ypserver ldap8.test.local 5、修改密码验证方式 # vi /etc/passwd 最后一行加入:(注:不要有空格) +::::::
6、vi /etc/nsswitch.conf passwd: files nis nisplus shadow: files nis nisplus group: files nis nisplus hosts: files nis dns 也可使用authconfig设定 #authconfig [*] uUse NIS [*] Use MD5 Passwords [*] Use Shadow Passwords Domain: test.local Server: ldap8.test.local 7、启动服务 #chkconfig --level 35 ypbind on #service ypbind start #rpcinfo -p localhost
program vers proto port
100000 2 tcp 111 portmapper
100000 2 udp 111 portmapper
100007 2 udp 735 ypbind
100007 1 udp 735 ypbind
100007 2 tcp 738 ypbind
100007 1 tcp 738 ypbind # yptest
Test 1: domainname
Configured domainname is "test.local" Test 2: ypbind
Used NIS server: ldap8.test.local Test 3: yp_match
WARNING: No such key in map (Map passwd.byname, key nobody) Test 4: yp_first
sshun sshun:$1$u.NiOoppp0kU7bnQBQGhK8RjVQYgRn/:602:602::/home/sshun:/bin/bash Test 5: yp_next Test 6: yp_master
ldap8 Test 7: yp_order
1166179352 Test 8: yp_maplist
protocols.bynumber
rpc.bynumber
protocols.byname
netid.byname
services.byname
hosts.byaddr
rpc.byname
ypservers
group.byname
group.bygid
mail.aliases
passwd.byname
hosts.byname
passwd.byuid
services.byservicename Test 9: yp_all
sshun sshun:$1$u.NiOoppp0kU7bnQBQGhK8RjVQYgRn/:602:602::/home/sshun:/bin/bash
出错和警告参见ref2 8、使用NFS主目录 NIS Server端: #vi /etc/exports /home 192.168.10.0/24(rw,async,no_root_squash) #exportfs -rv #service nfs start #chkconfig --level 35 nfs on NIS Client端: #vi /etc/rc.d/rc.local mount -t nfs 192.168.1.8:/home /home #mount -t nfs 192.168.1.8:/home /home ok,可以登陆了,但是 NIS 不支持 SSH,晕!!!据说NIS+可以支持。 ref1:
|
|
相关阅读 更多 +
