HPE Community
Operating System - HP-UX
1830207 Members
2101 Online
109999 Solutions
New Discussion

Using SAM to Convert to trusted System

 
SOLVED
Go to solution
John Warminski
Advisor

‎09-06-2004 10:39 AM

‎09-06-2004 10:39 AM

Using SAM to Convert to trusted System

After several years of happily using NIS, I need to convert to a tusted system .... from what I can tell from the docs .... SAM looks like the way to go ....

SAM however will not convert from NIS to a trusted system .... and I have not been succesful finding any appropriate docs for remvoing NIS

Does anyone know either ,

1.) What all I need to do to meet the dependencies.

I am assuming changes to
/etc/nsswitch
/etc/passwd - removing the "+"
/etc/group - ditto
/etc/namesvr - commenting out any reference to yp

OR

2.) links to docs to assist removing NIS
0 Kudos
6 REPLIES 6
Michael Tully
Honored Contributor

‎09-06-2004 11:02 AM

‎09-06-2004 11:02 AM

Re: Using SAM to Convert to trusted System

You can't convert an NIS to trusted, you have to either go to NIS+ or LDAP. As far as converting away from NIS I am not sure, but I will have a poke around.
Anyone for a Mutiny ?
0 Kudos
John Warminski
Advisor

‎09-06-2004 11:46 AM

‎09-06-2004 11:46 AM

Re: Using SAM to Convert to trusted System

Converting away form NIS for the time being.

Have to meet new security guidelines for password aging and history check by end of the week, don't think I have time to test and roll out NIS+
0 Kudos
Sridhar Bhaskarla
Honored Contributor

‎09-06-2004 12:10 PM

‎09-06-2004 12:10 PM

Solution

Re: Using SAM to Convert to trusted System

Hi,

Removing NIS shouldn't be a problem.

Stop NIS services by running the commands '/sbin/init.d/nis.client stop'. Make sure you halt all other clients using this as NIS server. Then run '/sbin/init.d/nis.server stop'.

Restore back your passwd, group, hosts, services etc, to standalone configurations.

Edit /etc/rc.config.d/namesvrs and remove NIS_DOMAIN domain and make NIS_SERVEr and NIS_CLIENT as 0. This will keep the system becoming an NIS cllient/server after reboots.

Also, consider /etc/default/security file as it has few more options in addition to what you get from trusted systems. Password history is enabled through this file.

-Sri
You may be disappointed if you fail, but you are doomed if you don't try
0 Kudos
Steven E. Protter
Exalted Contributor

‎09-06-2004 12:41 PM

‎09-06-2004 12:41 PM

Re: Using SAM to Convert to trusted System

Once you give up NIS the SAM conversion is trivial.

I'd day reverse the steps in this doc to handle the NIS issue.

http://docs.hp.com/cgi-bin/fsearch/framedisplay?top=/hpux/onlinedocs/B1031-90053/B1031-90053_top.html&con=/hpux/onlinedocs/B1031-90053/00/00/27-con.html&toc=/hpux/onlinedocs/B1031-90053/00/00/27-toc.html&searchterms=NIS%7cremoving&queryid=20040906-184047

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Cheryl Griffin
Honored Contributor

‎09-06-2004 12:42 PM

‎09-06-2004 12:42 PM

Re: Using SAM to Convert to trusted System

Use the "Configure & Administer NIS" guide, backwards to unconfigure.

http://docs.hp.com/hpux/onlinedocs/B1031-90054/00/00/27-con.html

Sam is the (supported) way to go to configure or unconfigure a Trusted system.
"Downtime is a Crime."
0 Kudos
John Warminski
Advisor

‎09-07-2004 01:18 AM

‎09-07-2004 01:18 AM

Re: Using SAM to Convert to trusted System

Thanks for the validation... wish me luck
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.