HPE Community
Operating System - HP-UX
1834274 Members
1707 Online
110066 Solutions
New Discussion

Re: Trusted system

 
sreejith_4
Frequent Advisor

‎05-11-2005 12:09 AM

‎05-11-2005 12:09 AM

Trusted system

Hi,

Is it possible to have trusted system with NIS ?

If yes, how to configure it ?

Thanks
Sreejith M
0 Kudos
Reply
4 REPLIES 4
Victor BERRIDGE
Honored Contributor

‎05-11-2005 12:16 AM

‎05-11-2005 12:16 AM

Re: Trusted system

Hi
the real question would be "does it make any sence"
Answer: definitely no

(It is incompatible with trusted anyway...)

What about considering LDAP?


All the best
Victor
0 Kudos
Reply
Steven E. Protter
Exalted Contributor

‎05-11-2005 12:21 AM

‎05-11-2005 12:21 AM

Re: Trusted system

I recall reading that trusted systems do not work well or at all with NIS.

Since NIS is falling out of favor and use, I would suggest the following:

LDAP
http://www1.itrc.hp.com/service/james/dispDoc.do?docURL=%2Fservice%2Fcki%2FdocDisplay.do%3FdocLocale%3Den_US%26docId%3D200000067002382&aid=SEARCH_CKI&pil=1&serStr=LDAP+Configuration
LDAP and Windows 2003
http://www1.itrc.hp.com/service/james/dispDoc.do?docURL=%2Fservice%2Fcki%2FdocDisplay.do%3FdocLocale%3Den_US%26docId%3D200000075980604&aid=SEARCH_CKI&pil=3&serStr=LDAP+Configuration
http://www1.itrc.hp.com/service/james/dispDoc.do?docURL=http%3A%2F%2Fsearch.hp.com%2Fredirect.html%3Furl%3Dhttp%253A%2F%2Fforums1.itrc.hp.com%2Fservice%2Fforums%2Fquestionanswer.do%253FthreadId%253D675643%26qt%3D%252BLDAP%2B%252BConfiguration%2B%26hit%3D1&aid=SEARCH_FORUMS&pil=13&serStr=LDAP+Configuration&pir=1

Trusted system doc:
http://www1.itrc.hp.com/service/james/dispDoc.do?docURL=http%3A%2F%2Fsearch.hp.com%2Fredirect.html%3Furl%3Dhttp%253A%2F%2Fforums1.itrc.hp.com%2Fservice%2Fforums%2Fquestionanswer.do%253FthreadId%253D45809%26qt%3D%252Btrusted%2B%252Bsystem%2B%252Bconfiguration%26hit%3D1&aid=SEARCH_FORUMS&pil=1&serStr=trusted+system+configuration&pir=1
http://www1.itrc.hp.com/service/james/dispDoc.do?docURL=%2Fservice%2Fcki%2FdocDisplay.do%3FdocLocale%3Den_US%26docId%3D200000065676950&aid=SEARCH_CKI&pil=7&serStr=trusted+system+configuration

http://www1.itrc.hp.com/service/james/dispDoc.do?docURL=%2Fservice%2Fcki%2FdocDisplay.do%3FdocLocale%3Den_US%26docId%3D200000062778846&aid=SEARCH_CKI&pil=2&serStr=trusted+system+configuration

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
Patrick Wallek
Honored Contributor

‎05-11-2005 01:16 AM

‎05-11-2005 01:16 AM

Re: Trusted system

No, trusted systems and plain NIS absolutely do NOT work together.

NIS+ does work with trusted systems, but it can be a pain to set up. LDAP would be the better choice.
0 Kudos
Reply
Bill Hassell
Honored Contributor

‎05-11-2005 01:51 AM

‎05-11-2005 01:51 AM

Re: Trusted system

A Trusted system is used to significantly improve security. NIS on the other hand, sends passwords across the network for anyone to see. True, these passwords are the encrypted Unix passwords, but because they can be guessed once someone has the encrypted string, NIS is considered unsecure. It makes no sense to turn on the hidden password feature of a Trusted system and then trash it by sending it across the network.

NIS+ does encrypt the passing of the encrypted password but it is not backward compatible so *all* of your NIS clients must be changed to run NIS+ (not always possible). NIS+ is being deprecated throughout the industry in favor of LDAP, with a goal of single sign-on and a universal authentication system (LDAP even works with Windows).


Bill Hassell, sysadmin
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.