Embed Size (px)
Citation preview
NIS SERVER
• The two common authentication services
are the Network Information Service (NIS)
and the Lightweight directory Access Protocol (LDAP).
• Both NIS and LDAP allows to manage all users &
computer centrally
How Local Authentication works ?
LinuxClient
LinuxClient
user1 user2
Solution for Local Authentication
LinuxClient
LinuxClient
user1 user2
user2 user1
How NIS works ?
LinuxClient
NISServer
LinuxClient
192.168.0.253
user1
user2
Requirements
• Packages ypserv-2.13.5.i386.rpmypbind-1.17.2-3.i386.rpm yp-tools-2.8-7.i386.rpm
• Port NumbersNIS uses random port numbers [root@comp1 ~]# rpcinfo -p
• Configuration File/var/yp/Makefile
• Serviceypservyppasswdd
• Daemonsypservyppasswdd
NIS Configuration
LinuxClient
NIS + NFS Server
LinuxClient
/home 192.168.0.253
user1user2
ZOOM.COM
Configuring NIS Server
Install the package by using one of the installation methods
[root@comp1~]# mount 192.168.0.250:/var/ftp/pub/RedHat/RPMS/ /mnt
[root@comp1 ~]# cd /mnt
[root@comp1 ~]# rpm -ivh yp* --force --aid
Assigning an NIS domain
[root@comp1~]# nisdomainname zoom.com
Assigning an NIS domain - Permenant
[root@comp1~]# vi /etc/sysconfig/network
/etc/sysconfig/network
Add below line
NISDOMAIN=ZOOM.COM
NIS Server
To restart the NIS services
[root@comp1 ~]# service portmap restart
[root@comp1 ~]# service yppasswdd restart
Configuring NIS Server
Open configuration for editing
[root@comp1~]# vi /var/yp/Makefile
/var/yp/Makefile
To change the below option
NOPUSH=TRUE
all : passwd group hosts \
NIS Server
To restart the NIS services
[root@comp1 ~]# service ypserv restart
NIS Server
To build database of users & groups
[root@comp1 ~]# /usr/lib/yp/ypinit -m
To create users
[root@comp1 ~]#useradd user1
[root@comp1 ~]#useradd user2
To update database with new users
[root@comp1 ~]# useradd user3
[root@comp1 ~]# useradd user4
[root@comp1 ~]# cd /var/yp
[root@comp1 ~]# make
Requirements
• Packages portmap-4.0-63.i386.rpmnfs-utils-1.0.6-46.i386.rpm
• Port Numbers2049 Nfsd 111 Portmap
• Configuration File/etc/exports
• Serviceportmap nfs
• Daemonsnfsd mountd statd lockd
Configuring NFS Server
Install the package by using one of the installation methods
[root@comp1~]# mount 192.168.0.250:/var/ftp/pub/RedHat/RPMS/ /mnt
[root@comp1 ~]# cd /mnt
[root@comp1 ~]# rpm -ivh nfs* --force --aid
Open configuration for editing
[root@comp1~]# vi /etc/exports
/etc/exports
To add the below
/home 192.168.0.0/255.255.255.0(rw,sync)
NFS Server
To restart the NFS services
[root@comp1 ~]# service nfs restart
Configuring Client
Install the package by using one of the installation methods
[root@comp1~]# mount 192.168.0.250:/var/ftp/pub/RedHat/RPMS/ /mnt
[root@comp1 ~]# cd /mnt
[root@comp1 ~]# rpm -ivh ypbind* yp-tools* --force --aid
Assigning an NIS domain
[root@comp1~]# nisdomainname zoom.com
Assigning an NIS domain - Permenant
[root@comp1~]# vi /etc/sysconfig/network
/etc/sysconfig/network
Add below line
NISDOMAIN=ZOOM.COM
Configuring Client
Connecting to server for authentication
[root@comp1 ~]# authconfig
Mounting home directories of the users
[root@comp1 ~]# mount 192.168.0.253:/home /home
Checking for connectivity
[root@comp1 ~]# ypwhich
How Local Authentication works ?
LinuxClient
NISServer
LinuxClient
User1
192.168.0.253
user1
****
How Local Authentication works ?
LinuxClient
NISServer
LinuxClient
User1
192.168.0.253
user1
LOCAL USER DATABASE
****user1 ****
user1 foundAuthentication
SuccessfulAccess - Granted
How Local Authentication works ?
LinuxClient
NISServer
LinuxClient
User2
192.168.0.253
user2
****
How Local Authentication works ?
LinuxClient
NISServer
LinuxClient
User2
192.168.0.253
user1
LOCAL USER DATABASE
****
user2 not foundAuthentication
FailAccess - Denied
How Local Authentication works ?
LinuxClient
NISServer
LinuxClient
User2
192.168.0.253
user2
****
How Local Authentication works ?
LinuxClient
NISServer
LinuxClient
User2
192.168.0.253
user2
LOCAL USER DATABASE
****user2 ****
user2 foundAuthentication
SuccessfulAccess - Granted
How Local Authentication works ?
LinuxClient
NISServer
LinuxClient
User1
192.168.0.253
user1
****
How Local Authentication works ?
LinuxClient
NISServer
LinuxClient
User1
192.168.0.253
user2
LOCAL USER DATABASE
****
user1 not foundAuthentication
FailedAccess - Denied
How NIS Authentication works ?
LinuxClient
NISServer
LinuxClient
User1
192.168.0.253
user1
****
How NIS Authentication works ?
LinuxClient
NISServer
LinuxClient
User1
192.168.0.253 ****user2
user1
NIS USER DATABASE
****user1 ****
user1 foundAuthentication
SuccessfulAccess - Granted
Request to
NIS
for Authentica
tion of
user1
Reply from NIS
Authenticating
user1
How NIS Authentication works ?
LinuxClient
NISServer
LinuxClient
User2
192.168.0.253
user2
****
How NIS Authentication works ?
LinuxClient
NISServer
LinuxClient
User2
192.168.0.253 ****user2
user1
NIS USER DATABASE
****
user2 ****
user2 foundAuthentication
SuccessfulAccess - Granted
Request to
NIS
for Authentica
tion of
user2
Reply from NIS
Authenticating
user2
How NIS Authentication works ?
LinuxClient
NISServer
LinuxClient
192.168.0.253
User1
user1
****
How NIS Authentication works ?
LinuxClient
NISServer
LinuxClient
User1
192.168.0.253 ****user2
user1
NIS USER DATABASE
****user1 ****
user1 foundAuthentication
SuccessfulAccess - Granted
Request to NIS
for Authentication of
user1Reply from NIS
Authenticating
user1
How NIS Authentication works ?
LinuxClient
NISServer
LinuxClient
192.168.0.253
User2
user2
****
How NIS Authentication works ?
LinuxClient
NISServer
LinuxClient
User2
192.168.0.253 ****user2
user1
NIS USER DATABASE
****
user2 ****
user2 foundAuthentication
SuccessfulAccess - Granted
Request to NIS
for Authentication of
user1Reply from NIS
Authenticating
user1
