test

系统管理指南:名称和目录服务(DNS、NIS 和 LDAP)

nsswitch.conf 模板文件

随 Solaris 系统提供了四个可以适用于不同名称服务的转换器模块文件。每个文件都提供一组不同的缺省信息源。

下面列出了这四个模板文件:

将最符合要求的模板文件复制到 nsswitch.conf 配置文件中,然后根据需要修改该文件。

例如,要使用 LDAP 模板文件,可键入以下命令:


mymachine# cp /etc/nsswitch.ldap /etc/nsswitch.conf

缺省的转换器模板文件

下面列出了随 Solaris 产品提供的四个转换器文件。

实例 2–1 NIS+ 转换器文件模板: nsswitch.nisplus 


#

#

# /etc/nsswitch.nisplus:

#

#

# An example file that could be copied over to /etc/nsswitch.conf;

# it uses NIS+ (NIS Version 3) in conjunction with files.

#

# "hosts:" and "services:" in this file are used only if the

# /etc/netconfig file has a "-" for nametoaddr_libs of "inet"

# transports.

 

# the following two lines obviate the "+" entry in /etc/passwd 

# and /etc/group.

passwd: files nisplus

group: files nisplus

# consult /etc "files" only if nisplus is down. 

hosts: nisplus [NOTFOUND=return] files

# Uncomment the following line, and comment out the above, to use 

# both DNS and NIS+. You must also set up the /etc/resolv.conf 

# file for DNS name server lookup. See resolv.conf(4).

# hosts: nisplus dns [NOTFOUND=return] files

services: nisplus [NOTFOUND=return] files

networks: nisplus [NOTFOUND=return] files

protocols: nisplus [NOTFOUND=return] files

rpc: nisplus [NOTFOUND=return] files

ethers: nisplus [NOTFOUND=return] files

netmasks: nisplus [NOTFOUND=return] files	

bootparams: nisplus [NOTFOUND=return] files

publickey: nisplus

netgroup: nisplus

automount: files nisplus

aliases: files nisplus

sendmailvars: files nisplus
实例 2–2 NIS 转换器文件模板


#

# /etc/nsswitch.nis:

#

# An example file that could be copied over to /etc/nsswitch.conf;

# it uses NIS (YP) in conjunction with files.

#

# "hosts:" and "services:" in this file are used only if the

# /etc/netconfig file has a "-" for nametoaddr_libs of "inet"

# transports.

#

# the following two lines obviate the "+" entry in /etc/passwd

# and /etc/group.

passwd: files nis

group: files nis

# consult /etc "files" only if nis is down. 

hosts: nis [NOTFOUND=return] files

networks: nis [NOTFOUND=return] files

protocols: nis [NOTFOUND=return] files

rpc: nis [NOTFOUND=return] files

ethers: nis [NOTFOUND=return] files

netmasks: nis [NOTFOUND=return] files	

bootparams: nis [NOTFOUND=return] files

publickey: nis [NOTFOUND=return] files

netgroup: nis

automount: files nis

aliases: files nis

# for efficient getservbyname() avoid nis

services: files nis

sendmailvars: files
实例 2–3 文件转换器文件模板


#

# /etc/nsswitch.files:

#

# An example file that could be copied over to /etc/nsswitch.conf;

# it does not use any naming service.

#

# "hosts:" and "services:" in this file are used only if the

# /etc/netconfig file has a "-" for nametoaddr_libs of "inet"

# transports.

passwd: files

group: files

hosts: files

networks: files

protocols: files

rpc: files

ethers: files

netmasks: files	

bootparams: files

publickey: files

# At present there isn't a 'files' backend for netgroup;

# the system will figure it out pretty quickly, and will notuse

# netgroups at all.

netgroup: files

automount: files

aliases: files

services: files

sendmailvars: files
实例 2–4 LDAP 转换器文件模板


#

# /etc/nsswitch.ldap:

#

# An example file that could be copied over to /etc/nsswitch.conf; it

# uses LDAP in conjunction with files.

#

# "hosts:" and "services:" in this file are used only if the

# /etc/netconfig file has a "-" for nametoaddr_libs of "inet" transports.



# the following two lines obviate the "+" entry in /etc/passwd 

and /etc/group.

passwd:     files ldap

group:      files ldap



hosts:      ldap [NOTFOUND=return] files



networks:   ldap [NOTFOUND=return] files

protocols:  ldap [NOTFOUND=return] files

rpc:        ldap [NOTFOUND=return] files

ethers:     ldap [NOTFOUND=return] files

netmasks:   ldap [NOTFOUND=return] files

bootparams: ldap [NOTFOUND=return] files

publickey:  ldap [NOTFOUND=return] files



netgroup:   ldap



automount:  files ldap

aliases:    files ldap



# for efficient getservbyname() avoid ldap

services:   files ldap

sendmailvars:   files

nsswitch.conf 文件

随 Solaris 软件安装的缺省 nsswitch.conf 文件由安装过程中选择的名称服务确定。每一行都标识特定类型的网络信息(如主机、口令和组)以及信息源(如 NIS+ 表、NIS 映射、DNS 主机表或本地 /etc)。在选择某个名称服务时,会复制该服务的转换器模板文件以创建新的 nsswitch.conf 文件。例如,如果选择 NIS+,则会复制 nsswitch.nisplus 文件以创建新的 nsswitch.conf 文件。

Solaris 9 发行版软件会自动将 nsswitch.conf 文件与下列备用(模板)版本一起加载到每台计算机的 /etc 目录中。

这些备用模板文件中包含由 NIS+ 服务、NIS 服务、本地文件和 LDAP 使用的缺省转换器配置。系统没有为 DNS 提供缺省文件,但是可以编辑其中的任何文件以使用 DNS。在将 Solaris 软件首次安装到计算机上时,安装程序会选择计算机的缺省名称服务。在安装过程中,会将相应的模板文件复制到 /etc/nsswitch.conf 中。例如,对于使用 NIS+ 的客户机,会在安装过程中将 nsswitch.nisplus 复制到 nsswitch.conf 中。

如果网络连接到 Internet,而且用户必须使用 DNS 访问 Internet 主机,则必须启用 DNS 转发。

除非您拥有特殊的名称空间,否则复制到 nsswitch.conf 中的缺省模板文件应该能够满足正常的操作。