HPE Community
Operating System - HP-UX
1847967 Members
5483 Online
104022 Solutions
New Discussion

Re: root passwd read from NIS not /etc/passwd

 
Ian James
Occasional Contributor

‎03-30-2005 01:59 AM

‎03-30-2005 01:59 AM

root passwd read from NIS not /etc/passwd

When root's password on the 11.11 NIS server is changed using passwd, it updates /etc/passwd but when root logs out and logs in or su, the passwd that works is the one that WAS in use when ypmake was last run. The /etc/nsswitch.conf has passwd: files nis
The /etc/rc.config.d/namesvrs has
YPPASSWDD_OPTIONS="/etc/passwd -m passwd PWFILE=/etc/passwd"
After ypmake is run, the new passwd is the correct one. The NIS slave server always uses the /etc/passwd entry.
0 Kudos
Reply
3 REPLIES 3
TwoProc
Honored Contributor

‎03-30-2005 02:44 AM

‎03-30-2005 02:44 AM

Re: root passwd read from NIS not /etc/passwd

I'm not sure what's going on - so I'll just throw out a few things I thought about:

Although unlikely - I gotta ask - Is root defined in /etc/password - or did it get deleted where it must get inherited from NIS?

What about another user who has an ID of zero? Maybe this is messing you up? I doubt that one too - but just checking the obvious...
We are the people our parents warned us about --Jimmy Buffett
0 Kudos
Reply
A. Clay Stephenson
Acclaimed Contributor

‎03-30-2005 02:51 AM

‎03-30-2005 02:51 AM

Re: root passwd read from NIS not /etc/passwd

One thing that occurs to me is that you may have a '+' entry in /etc/passwd on the NIS master.
If it ain't broke, I can fix that.
0 Kudos
Reply
Rick Garland
Honored Contributor

‎03-30-2005 02:52 AM

‎03-30-2005 02:52 AM

Re: root passwd read from NIS not /etc/passwd

Modify the ypmake on the NIS server to not push the account info for accounts with UID < 100. In this manner the local account info on the local systems is never pushed accross the networks and updated in the passwd maps.

This way you can run passwd root all you want on a NIS server system but the account info for root will never be transmitted.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.