- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: Disable NIS logins
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-31-2007 12:13 AM
тАО07-31-2007 12:13 AM
We have an HP/UX 11.11 system as NIS Authentication and Fileserver.
The server is currently also configured as NIS client so the "ls -l" shows the users as owner instead of the numeric uid.
We don't however want to allow the users to login to the server, only on the clients it exports the /home to.
I've added the following line to /etc/passwd:
+:*:::::/bin/false
NIS is however ignoring both the * in the password field and /bin/false in the shell allowing the users to login.
Kind Regards,
Frank Timmers.
Solved! Go to Solution.
- Tags:
- NIS
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-31-2007 12:58 AM
тАО07-31-2007 12:58 AM
Re: Disable NIS logins
What if you remove the complete line starting with the +, in other words allow only local defined users to logon the system.
Check the /etc/nsswitch.conf file for the line
passwd: compat
and change it into
passwd: files
Regards,
Robert-Jan
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-31-2007 01:10 AM
тАО07-31-2007 01:10 AM
SolutionI think you have something like this in your /etc/nsswitch.conf
passwd: files nis
So your +: entry will be a no-op. To activate it, and so have overrides enabled, use
passwd: compat
mfG Peter
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-31-2007 01:27 AM
тАО07-31-2007 01:27 AM
Re: Disable NIS logins
Thanks for your replies.
my /etc/nsswitch.conf indeed contained the line: "passwd: files nis"
The solution was, as Peter said, to change this to: "passwd: compat"
It now works as needed. NIS users are still resolved locally on the server, but not allowed to login (due to the overrides in the "+" line in the passwd).
Kind Regards,
Frank Timmers.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-31-2007 01:33 AM
тАО07-31-2007 01:33 AM
Re: Disable NIS logins
=> "+:*:::::" in /etc/passwd (where the * overrides NIS password entry)
=> "passwd: compat" in /etc/nsswitch.conf (compat allowes for the override, in oposition to "passwd: files nis" which accesses NIS directly).
Kind Regards,
Frank.