MCSE Boot Camp Notes :

Networking Guide
Chapter 7, Configuring the Network Information Service (NIS)
Planning an NIS configuration

Planning an NIS configuration

When planning an NIS configuration, you must gauge your network administration needs with regard to domain structure, server disposition, security concerns, and the physical structure of the network. Your configuration will also be affected if the network is heterogeneous, that is, if it includes hosts running operating systems other than SCO systems. The following sections explain these considerations in more detail. 

Selecting domains

For most NIS installations, a single domain is sufficient to satisfy users' needs. However, if your site has multiple networks, you must create separate domains for each network because NIS domains cannot cross network boundaries. A possible network division might be into accounting, marketing, and manufacturing domains.

In such an environment, it is recommended that there be one master and at least one slave server for each domain.

NOTE: Multiple networks can share a single domain if there is a single shared machine with a network interface for each network.



Selecting servers

Two factors are important in selecting master and slave servers: uptime and synchronization. The master server should be a host that is stable and available for NIS requests. This suggests that a machine be dedicated as a master server and that there be at least one slave server for each master in a domain should the master become unavailable.

The master and slave servers should have CPUs of comparable power to those of the machines to which they will propagate maps. This is particularly important in heterogeneous environments where a number of NIS clients running on other operating systems may seek to bind with the most available server. Because it is essential that current map information be uniformly available across the network, availability and equivalent speed of servers ensure that the propagation of map information is synchronized.

In an NIS environment comprised of SCO machines exclusively, slave servers can be used as a backup to the master server and to improve the ability to service map update requests from copy-only servers. In a heterogeneous environment, slave servers should be added as needed to keep up with requests from clients running on other operating systems.

The physical structure of the network may influence the distribution of slave servers. For example, if you have a network that includes a bridge, you will probably want at least two slave servers on either side. This is because NIS requests are delayed when crossing bridges. The result is that a server on the same side of a bridge as the requesting host will satisfy a request sooner than one on the far side, even if the closer server is heavily loaded. Having two slave servers on the requesting side of the bridge removes a virtual reliance on one server that may be heavily loaded. 

Security

Although NIS is designed to administer password and group authorization files, such administration is incompatible with C2 security. SCO NIS maintains C2 security in an NIS environment by enforcing the following restrictions:

  • Only copy-only servers may be initialized on Secure Mode machines.

  • Copy-only servers in Secure Mode may not use password and group maps for authentication. This means that master and slave servers are not afforded C2 protection.

NOTE: SCO NIS clients cannot be C2 Secure because they integrate password and group maps.

In a heterogeneous environment, SCO copy-only servers under C2 protection continue to refuse password and group maps from master or slave servers running on other operating systems. However, an SCO master or slave server (by definition in Unsecure Mode) may be able to propagate maps to C2-protected clients on other operating systems. Consult your client's documentation to address your security concerns. Refer also to ``NIS interaction with security modes''.

See also:

Networking guide
Call : 800-519- 2267
MCSE CCNA Certification boot camp
Testimonials
 Join MCSE Boot Camp & CCNA Boot Camp Back to Back Certification Today.
 MCSE Boot Camp links  MCSE Boot Camp 270  MCSE Boot Camp  290  MCSE Boot Camp  291  MCSE Boot Camp 293  MCSE Boot Camp  294  MCSE Boot Camp 298  MCSE Boot Camp 299  MCSE Boot Camp Security  MCSE Boot Camp 640-801  MCSE Boot Camp routing MCSE Boot Camp 811  MCSE Boot Camp 821  MCSE Boot Camp 831  MCSE Boot Camp Resources MCSE Boot Camp MCSE + CCNA  MCSE Boot Camp Training  MCSE Boot Camp Card pay  MCSE Boot Camp Papal  MCSE Boot Camp MCSE Notes  MCSE Boot Camp CCNA Notes    MCSE Boot Camp index MCSE Boot Camp main  MCSE Boot Camp root MCSE Boot Camp link  MCSE Boot Camp resources MCSE Boot Camp home    Ref1 Ref2
Microsoft MCSE Boot Camp
MCSE Boot Camp, MCSE Certification boot camp, MCSE Training boot camps, MCSE certification  boot camp training at California and Maryland USA. Also CCNA, CCNP, CISSP, Red Hat Linux Certification notes.

 Vibrant boot camp offers MCSE, CCNA, CCNP Certification back to back

Vibrant offers MCSE certification training boot camp for $5400 all inclusive, instructor led at California and Baltimore.

Vibrant Bootcamp Participants come from All Around the World. Vibrant has trained students from more than 15 countries like USA, UK, (Scotland, Ireland, Wales), Switzerland, Germany, Australia, Canada, France, Holland, Japan, Belgium, Bahrain, New Zealand, Tanzania, Turkey, Kenya and more.

Preboot Sequence, Process Accounting, Publishing Resources, Publishing Software Packages, Redeploying Software, Refreshing Group Policy at Established Intervals, Remote Assistance, Remote Desktop for Administration, Removing a Service Pack or Hotfix, Removing or Disabling Software, Requesting Assistance, Reroute Requests with Redirects, Resolving Conflicts Between Group Policy Settings, Restoring Active Directory Directory Services, Restoring Files and Folders, Roaming User Profiles, Security, Setting Up and Managing Published Printers, Setting Up and Managing Published Shared Folders, Setting Up Auditing, Shared Folder Permissions, Slipstreaming Service Packs and Hotfixes, Software Deployment, Software Installation and Maintenance Technology, Software Update Services, Support_388945a0 account credentials instead of the users credentials to perform specific administrative, System Requirements, TABLE OF CONTENTS : Installing and Deploying Windows Server 2003, Taking Ownership, Terminal Server Role, Terminal Services Components, Terminal Services,  The Boot.ini File, The Deny Permission, The File Signature Verification Utility, The Logman Utility, MCSE Boot Camp Training get MCSE join MCSE Bootcamp, The Recovery Console, The relog Utility, MCSE Boot Camp Training get MCSE join MCSE Bootcamp, The Remote Desktop Connection Utility, The Remote Desktops Snap-In, The Session Manager, The Shutdown Event Tracker, The System Monitor, The typeperf Utility, The Windows Server 2003 Boot Process, Troubleshooting NTFS Permission Problems, Troubleshooting Terminal Services, Unattended Installation, Upgrading Software, Using a Saved File to Request Assistance, Using an Audit Policy, Using an Unattended Answer File, Using Configure Your Server Wizard and Add or Remove Programs to Install IIS, Using Driver Signing, Using E-Mail to Request Assistance, Using Event Viewer to View Security Logs, Using Event Viewer, Using Group Policy, Using Remote Installation Services, Using Scripting to Manage Website Content, Using Task Manager to Monitor Performance, Using the Recovery Console, Using the System Preparation Tool, Using User Profiles, Using Windows Messenger to Request Assistance, Viewing Security Logs, Virtual Directories, Volume Mounting, Web-Based Administration, Windows Server 2003 Licensing, Windows Server 2003 network, Windows Update Catalog, Windows Update