Managing Multiple Trusted Solaris Computers in a Security Domain

Setting up a name service master and clients (NIS and NIS+) is described in Trusted Solaris Installation and Configuration.

To achieve uniformity of user, host, and network attributes within a security domain with multiple Trusted Solaris computers, a naming service is used for distributing most configuration information. If a name service is not used, administrators should ensure that configuration information for users, hosts, and networks is identical in the local files on all hosts and any changes made on one host are made on all. See "Administering Remote Systems", if needed.

A Trusted Solaris NIS or NIS+ master can manage data for Trusted Solaris and Solaris NIS or NIS+ clients.

A Trusted Solaris NIS+ master can also manage data for NIS clients (such as hosts running the Trusted Solaris 1.x operating environment) if NIS compatibility mode is used. NIS compatibility mode requires slightly different setup procedures than for a standard NIS+ server. NIS compatibility mode has security implications for NIS+ tables. For the differences and security implications, see "Using NIS-Compatibility Mode" in the NIS+ Transition Guide.

Trusted Solaris computers cannot be clients of Solaris NIS or NIS+ masters.