SYNOPSIS: How to setup a Solaris x86 2.4 machine as an NIS+ server



DOCUMENT ID:  1193-02

SYNOPSIS:     How to setup a Solaris x86 2.4 machine as an NIS+ server

OS RELEASE:   2.4

PRODUCT:      Solaris x86, Solaris NIS+

KEYWORDS:     NIS+ server system administrator client


DESCRIPTION:

This document outlines the minimum steps required to setup an NIS+
server, define a NIS+ system administrator, and setup an NIS+ client. 


SOLUTION:

It is assumed that Solaris was installed onto a standalone machine and
that no service, as of yet, has been defined.  If this is not the case,
it is recommended that 'sys-unconfig' be run in order to "blank" out the
system so that it has no knowledge of other systems, a network,
services, or even its own name. 

1) Adding a new group for the NIS+ administrator.

   Use 'admintool' and select Database Manager.
   Select None for Naming Service.
   Select Group and then Load.
   Select Edit->Add and define a new group called "admin" and give
   it a GID of 11 (the first available one starting from 0).

2) Adding a user who is a member of the "admin" group.

   This will be the NIS+ administrator.

   Use 'admintool' and select the User Account Manager.
   Select None for the Naming Service.
   Select Edit->Add.

       Primary Group: admin
       Secondary Group: staff
       Create Home Dir: yes
       Path: /export/home/'username'
       Skeleton Path: /etc/skel
       Autohome Setup: yes

   The rest of the fields can be filled out or selected at your
   discretion.

3) As root on the Server, execute:

   /usr/lib/nis/nisserver -r -d NIS+_DOMAINNAME.

   For example:
 
        /usr/lib/nis/nisserver -r -d support.West.Sun.COM
 
   And then:
 
        /usr/lib/nis/nispopulate -F -d NIS+_DOMAINNAME -p /etc

4) Execute /usr/lib/nis/nislog and then press CTRL-C to break out
   of it, otherwise it will take a while before it stops.

5) Execute /usr/lib/nis/nisping -C NIS+_DOMAINNAME.

6) Enable DNS (if desired) in /etc/nsswitch.conf by uncommenting
   the line that looks like:

        #hosts:      nisplus dns [NOTFOUND=return] files

   by removing the '#' and inserting a '#' at the beginning of the
   line that looks like:

        hosts:      nisplus [NOTFOUND=return] files

7) Export the /export filesystem so that the users' home
   directories can be mounted onto the clients' from the server.

   Add the line:

   share -F nfs -o rw -d "home dirs" /export/home

   to /etc/dfs/dfstab and then execute that same line on the
   command line to share the /export/home directory now.

8) Restart the rpc.nisd process at security level 0 so that the
   NIS+ administrator can set its NIS+ credentials.

   # ps -e|grep rpc.nisd       (to get the PID of rpc.nisd)
   # kill PID                  (replace PID with the number
                                obtained in the previous step)
   # rpc.nisd -S0

9) Switch-user to the administrator you defined in step 2 so that
   you add credentials while the security level is 0:

   # su 'username'
   $ nisaddcred local
   $ nisaddcred des
   $ exit
   #

10) Repeat step 8, but start rpc.nisd without any parameters.


DATE APPROVED: 09/25/95