Using NIS maps in the password file

You can incorporate NIS maps in a client's /etc/passwd file to supplement entries that are valid only locally. User entries can be added from the NIS password map by starting them with the token ``+''. NIS entries for users have the following format:

+[username]:[password]:::[comment]:[directory]:[program]

The fields have the same meaning as for ordinary passwd(F) file entries except that there are no entries for the user or group IDs. That is, the UID and GID from the NIS entry are always used; they cannot be defined locally. Entries in the password, comment, directory, or program field override the corresponding value obtained from the NIS server.

The following entry inserts the entire NIS password file:

   +:

Any host information about a netgroup is ignored.

You can prevent users and members of netgroups from logging in by starting their passwd entries with ``-'' instead of ``+'':

-username:
-@netgroup:

The following example passwd file is used in conjunction with the shadow(F) file to include and exclude certain users and netgroups:

   root:x:0:10:super user:/:/bin/sh
   fran:x:121:100:Fran Sisco:/u/fran/:/bin/ksh
   -renee:
   -@marketing:
   +diego::::::
   +:::::/u/guest:/bin/rksh
   +@developers:

• Local users root and fran can log in even when the system is standalone.

• root and fran cannot use their NIS passwords on this client; they are local users.

• renee is prevented from logging in even if she is also a member of the netgroup developers.

• All members of the netgroup marketing are forbidden to log in unless they are also members of developers. fran can log in even if she is a member of marketing.

• diego and all members of the network group developers can log in using their NIS passwords provided that they are not also members of marketing.

• Members of the netgroup developers are restricted to using rksh(C) in the directory /u/guest by the entry +:::::/u/guest:/bin/rksh that precedes the entry defining their inclusion.

See also:

• ``About netgroups''

• ``Creating netgroups''

• passwd(F)

• group(F)

• netgroup(NF)

Home Notes   Home   MCSE   MCSE + Security   CCNA   CCNP   Schedule   Register   Frequently Asked Questions   Course Fees   Contact US   Boot Camp Location   Compare us to our competitors   Testimonials   Sitemap

Testimonials

Join MCSE Boot Camp & CCNA Boot Camp Back to Back Certification Today. links  270    290    291  293    294  298  299  Security  640-801  routing 811  821   831  Resources MCSE + CCNA  Training  Card pay  Papal  MCSE Notes  CCNA Notes    index main  root link  resources home    Ref1 Ref2

Vibrant offers MCSE certification training boot camp for $5400 all inclusive, instructor led at California and Baltimore.

Vibrant Bootcamp Participants come from All Around the World. Vibrant has trained students from more than 15 countries like USA, UK, (Scotland, Ireland, Wales), Switzerland, Germany, Australia, Canada, France, Holland, Japan, Belgium, Bahrain, New Zealand, Tanzania, Turkey, Kenya and more.