Date: Tue, 29 Apr 2003 15:43:51 +0000 From: =?iso-8859-1?q?=C2ngelo=20Rodrigues?= <amr@fccn.pt> To: "Neeraj Arora" <Neeraj.Arora@ems.rmit.edu.au>, <dnelson@allantgroup.com> Cc: freebsd-questions@freebsd.org Subject: Re: Sincronize /etc/passwd and /etc/yp/passwd.master Message-ID: <200304291543.51679.amr@fccn.pt> In-Reply-To: <seaef094.061@ems.rmit.edu.au> References: <seaef094.061@ems.rmit.edu.au>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi again, My problem is simple. I'm trying to install a central login/password syst= em=20 but I want to find a way to sincronize /etc/master.passwd and=20 /var/yp/master.passwd without having to force all local users to run two=20 commands, passwd and yppasswd. It has been suggested me to make a simbolic link from /var/yp/master.pas= swd=20 to /etc/master.passwd. This is a possible solution but, this will force t= he=20 server's root user to be the client's root user so, I won't be able to ac= cess=20 to any client when the network is down. I think any client should have at least one local user to avoid this crit= ical=20 situation. Do you have any ideia about this? Regards, On Tuesday 29 April 2003 11:37, Neeraj Arora wrote: > Hmm...needed to search the trash for your original post before replying= is > it...??? > > And I did it....I think amidst the replies I got the impression that yo= u > werent able to direct the home directory to the correct one when the > machine was not the nis server machine. > > Well cleared up now... > > Sorry about that...:^) > > So is your problem solved??? Or would you like to state it again in a c= lean > way (your problem (undeleted) minus all the replies that have been made= by > now...:^) > > Regards, > Neeraj > > >>> =C2ngelo Rodrigues <amr@fccn.pt> 04/29/03 20:59 PM >>> > > Hi, > > I think you have made a series confusion!!! I don't want to use any fil= e > server, I just want to use a centralized system of login/password. > Please, read all messages to understand all point. > > Regards, > > On Tuesday 29 April 2003 10:31, Neeraj Arora wrote: > > Please refer to the email below (that I am replying to) before readin= g > > what I write... > > > > /var/yp/master.passwd is not to be a softlink or symbolic link to > > /etc/master.passwd According the documentation (handbook I think), > > /var/yp/master.passwd is a copy of /etc/master.passwd without the roo= t, > > system and one user who is also the member of group wheel. > > > > One can use amd (automount daemon) to have all users have their home > > directories in /home, while the directories inside /home are themselv= es > > mounted when needed according to the amd map supplied by nis. On the > > fileserver or the nfs server system, one could have different directo= ries > > for different machines depending on any one or a combination of the > > os/hostname/ipaddress/network/etc. of the mounting machine. > > > > So if the fileserver had /allhomedirs and in that had ./linux, and > > ./freebsd and in each of them ./tom ./dick and ./harry; a linux clien= t > > would end up providing /allhomedirs/linux/<user> at /home/<user> whil= e a > > freebsd client would do the same by providing /allhomedirs/freebsd/<u= ser> > > at /home/<user>. > > > > This will allow the entries in the /var/yp/master.passwd and > > /var/yp/passwd to remain untouched when produced as nis maps for > > different clients/hosts. Same can be done by mounting the appropriate > > shell binary from a fileserver using amd maps while the path for the > > shell can still remain only /path/shell or /usr/local/bin/bash; for l= inux > > clients the > > /usr/local/whatever is mounted from /allusrlocaldirs/linux/whatever a= nd > > for freebsd it is mounted from /allusrlocaldirs/freebsd/whatever. > > > > One might not need to overwrite any field produced by nis on a client > > machine. > > > > Personally I feel, the less the configuration differences in differen= t > > client machines, the better. > > > > Hope I havent got off the point completely...:-\ > > > > Regards, > > Neeraj > > > > >>> =C2ngelo Rodrigues <amr@fccn.pt> 04/29/03 20:08 PM >>> > > > > On Monday 28 April 2003 17:39, Dan Nelson wrote: > > > In the last episode (Apr 28), ^Angelo Rodrigues said: > > > > On Monday 28 April 2003 16:22, Matthew Seaman wrote: > > > > > On Mon, Apr 28, 2003 at 05:06:36PM +0000, ^Angelo Rodrigues wro= te: > > > > > > On Monday 28 April 2003 15:48, Dan Nelson wrote: > > > > > > > You want the same password; why wouldn't you want the same > > > > > > > homedir and shell also? All our NIS users have their homed= ir > > > > > > > set to /net/homedirmachine/home/username. > > > > > > > > > > > > But my server users are distributed betwen /home and /homeapp= and > > > > > > this method will force the same thing in the clients. > > > > > > > > > > You can selectively override part of a NIS password database en= try > > > > > by using NIS magic tokens in the local passwd file --- see > > > > > passwd(5). For instance, user 'fred' might have home directory > > > > > /home/fred in the NIS database, but you can override that in a > > > > > client machine to /users/fred by putting: > > > > > > > > > > +fred::::::::/users/fred: > > > > > > > > > > into /etc/master.passwd on the client. All of the other fields= are > > > > > inherited from the NIS database. > > > > > > > > This could be a solution :) > > > > > > Standardizing the name of the homedir would make your job a lot eas= ier. > > > Can you make symlinks in /home so that every user whose homedir is = in > > > /homeapp can use /home/user also? Then the user's home is > > > "/home/user" no matter what machine he logs into. > > > > But there's still a little problem... As the /var/yp/master.passwd is= a > > softlink to /etc/master.passwd, the server's root user will be the sa= me > > in the client so, the client won't have any local user. This can caus= e > > some series problems when the network is down. The client machine > > should have at least some local users to avoid this kind of problem. > > > > Regards, --=20 =C2ngelo Rodrigues - amr@fccn.pt=20 FCCN - Funda=E7=E3o para a Computa=E7=E3o Cient=EDfica Nacional Av. Brasil, 101 1700-066 Lisboa - Portugal Tel: +351 218440100 Fax: +351 218472167 -----------------------------------------------------
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200304291543.51679.amr>