This chapter describes how to use the NIS+ directory administration commands to remove NIS+ from clients, servers, and the namespace as a whole.
For information on disassociating an NIS+ replica server from a directory so that it no longer acts as a replica for that domain, see nisrmdir Command.
NIS+ might not be supported in a future release. Tools to aid the migration from NIS+ to LDAP are available as of the Solaris 9 release. For more information, see System Administration Guide: Naming and Directory Services (DNS, NIS, and LDAP) and visit NIS+ End-of-Feature (EOF) Announcement FAQ.
The NIS+ service is managed by the Service Management Facility. Administrative actions on this service, such as enabling, disabling, or restarting, can be performed by using the svcadm command. See NIS+ and the Service Management Facility for more information about using SMF with NIS+. For an overview of SMF, refer to Chapter 18, Managing Services (Overview), in System Administration Guide: Basic Administration. Also refer to the svcadm(1M) and svcs(1) man pages for more details.
This section described how to remove NIS+ from a client machine. Keep in mind that removing NIS+ from a client machine does not remove the NIS+ name service from your network. See Removing the NIS+ Namespace for information on removing the NIS+ name service from a network and returning to either NIS or /etc files for name purposes.
To remove NIS+ from a client machine that was set up as an NIS+ client using the nisclient -i script as described in Chapter 4, Configuring NIS+ With Scripts, run nisclient with the -r option:
client# nisclient -r |
nisclient -r simply undoes the most recent iteration of nisclient -i; it restores the previous naming system used by the client, such as NIS or /etc files.
To remove NIS+ from a client machine that was set up as an NIS+ client using the nisaddcred, domainname, and nisinit commands as described in Chapter 4, Configuring NIS+ With Scripts, perform the following steps:
client# rm -f /etc/.rootkey |
Stop the keyserver.
client# svcadm disable /network/rpc/keyserv |
Stop the NIS+ service.
This stops the rpc.nisd daemon and the nis_cachemgr.
client# svcadm disable /network/rpc/nisplus:default |
Stop the name service cache (nscd).
client# svcadm disable /system/name-service-cache:default |
Remove the /var/nis directory and files.
clientmachine# rm -rf /var/nis/* |
This section describes how to remove NIS+ from an NIS+ server.
Keep in mind that removing NIS+ from a server does not remove the NIS+ name service from your network. See Removing the NIS+ Namespace for information on removing the NIS+ name service from a network and returning to either NIS or /etc files for naming purposes.
You can replace a machine that you are using as an NIS+ server with another machine. See Replacing NIS+ Server Machines.
To remove NIS+ from a server, follow these steps:
Perform the steps necessary to remove NIS+ from a client.
An NIS+ server is also an NIS+ client. This means that you must first remove the client-related part of NIS+. You can use nisclient -r as described in Removing NIS+ That Was Installed Using nisclient or the NIS+ command set as described in Removing NIS+ That Was Installed Using NIS+ Commands.
Remove the server's groups_dir and org_dir directories.
server# nisrmdir -f groups_dir.domainname server# nisrmdir -f org_dir.domainname |
Stop the keyserver.
client# svcadm disable /network/rpc/keyserv |
Stop the NIS+ service.
This kills the rpc.nisd daemon and the nis_cachemgr.
server# svcadm disable /network/rpc/nisplus:default |
Stop the name service cache (nscd).
server# svcadm disable /system/name-service-cache:default |
Remove the /var/nis directory and files.
rootmaster# rm -rf /var/nis/* |
To remove the NIS+ namespace and return to using either NIS or /etc files for name services, follow these steps:
Remove the .rootkey file from the root master.
rootmaster# rm -f /etc/.rootkey |
Remove the groups_dir and org_dir subdirectories from the root master root domain.
rootmaster# nisrmdir -f groups_dir.domainname rootmaster# nisrmdir -f org_dir.domainname |
Where domainname is the name of the root domain, for example, doc.com.
Remove the root domain.
rootmaster# nisrmdir -f domainname |
Where domainname is the name of the root domain, for example, doc.com.
Stop the keyserver.
client# svcadm disable /network/rpc/keyserv |
Stop the NIS+ service.
This kills the rpc.nisd daemon and the nis_cachemgr.
rootmaster# svcadm disable -t /network/rpc/nisplus:default |
Stop the name service cache (nscd).
rootmaster# svcadm disable -t /system/name-service-cache:default |
Create a new domain.
rootmaster# domainname name |
Where name is the name of the new domain; for example, the name of the domain before you installed NIS+.
Remove the existing /etc/defaultdomain file.
rootmaster# rm /etc/defaultdomain |
Recreate the /etc/defaultdomain file with the new domain name.
rootmaster# domainname > /etc/defaultdomain |
Replace the original nsswitch.conf file.
If you set up this server with nisserver -r, you can use:
rootmaster# cp /etc/nsswitch.conf.no_nisplus /etc/nsswitch.conf |
Alternatively, you can copy over one of the default switch template files. To use the default NIS switch file template, you would type:
rootmaster# cp /etc/nsswitch.nis etc/nsswitch.conf |
To use the default /etc files switch file template, you would type:
rootmaster# cp /etc/nsswitch.files etc/nsswitch.conf |
Remove the /var/nis directory and files.
rootmaster# rm -rf /var/nis/* |
Start the NIS+ service.
rootmaster# svcadm enable /network/rpc/nisplus:default |