Chapter 22 Removing NIS+
This chapter describes how to use the NIS+ directory administration commands to remove NIS+ from clients, servers, and the namespace as a whole.
For information on disassociating an NIS+ replica server from a directory so that it no longer acts as a replica for that domain, see nisrmdir Command.
Note –
NIS+ might not be supported in a future release. Tools to aid the migration from NIS+ to LDAP are available as of the Solaris 9 release. For more information, see System Administration Guide: Naming and Directory Services (DNS, NIS, and LDAP) and visit NIS+ End-of-Feature (EOF) Announcement FAQ.
The NIS+ service is managed by the Service Management Facility. Administrative actions on this service, such as enabling, disabling, or restarting, can be performed by using the svcadm command. See NIS+ and the Service Management Facility for more information about using SMF with NIS+. For an overview of SMF, refer to Chapter 18, Managing Services (Overview), in System Administration Guide: Basic Administration. Also refer to the svcadm(1M) and svcs(1) man pages for more details.
Removing NIS+ From a Client Machine
This section described how to remove NIS+ from a client machine. Keep in mind that removing NIS+ from a client machine does not remove the NIS+ name service from your network. See Removing the NIS+ Namespace for information on removing the NIS+ name service from a network and returning to either NIS or /etc files for name purposes.
Removing NIS+ That Was Installed Using nisclient
To remove NIS+ from a client machine that was set up as an NIS+ client using the nisclient -i script as described in Chapter 4, Configuring NIS+ With Scripts, run nisclient with the -r option:
client# nisclient -r |
nisclient -r simply undoes the most recent iteration of nisclient -i; it restores the previous naming system used by the client, such as NIS or /etc files.
Removing NIS+ That Was Installed Using NIS+ Commands
To remove NIS+ from a client machine that was set up as an NIS+ client using the nisaddcred, domainname, and nisinit commands as described in Chapter 4, Configuring NIS+ With Scripts, perform the following steps:
How to Remove NIS+ That Was Installed Using NIS+ Commands
-
client# rm -f /etc/.rootkey
-
Stop the keyserver.
client# svcadm disable /network/rpc/keyserv
-
Stop the NIS+ service.
This stops the rpc.nisd daemon and the nis_cachemgr.
client# svcadm disable /network/rpc/nisplus:default
-
Stop the name service cache (nscd).
client# svcadm disable /system/name-service-cache:default
-
Remove the /var/nis directory and files.
clientmachine# rm -rf /var/nis/*
Removing NIS+ From a Server
This section describes how to remove NIS+ from an NIS+ server.
Keep in mind that removing NIS+ from a server does not remove the NIS+ name service from your network. See Removing the NIS+ Namespace for information on removing the NIS+ name service from a network and returning to either NIS or /etc files for naming purposes.
Note –
You can replace a machine that you are using as an NIS+ server with another machine. See Replacing NIS+ Server Machines.
To remove NIS+ from a server, follow these steps:
How to Remove NIS+ From a Server
-
Perform the steps necessary to remove NIS+ from a client.
An NIS+ server is also an NIS+ client. This means that you must first remove the client-related part of NIS+. You can use nisclient -r as described in Removing NIS+ That Was Installed Using nisclient or the NIS+ command set as described in Removing NIS+ That Was Installed Using NIS+ Commands.
-
Remove the server's groups_dir and org_dir directories.
server# nisrmdir -f groups_dir.domainname server# nisrmdir -f org_dir.domainname
-
Stop the keyserver.
client# svcadm disable /network/rpc/keyserv
-
Stop the NIS+ service.
This kills the rpc.nisd daemon and the nis_cachemgr.
server# svcadm disable /network/rpc/nisplus:default
-
Stop the name service cache (nscd).
server# svcadm disable /system/name-service-cache:default
-
Remove the /var/nis directory and files.
rootmaster# rm -rf /var/nis/*
Removing the NIS+ Namespace
To remove the NIS+ namespace and return to using either NIS or /etc files for name services, follow these steps:
How to Remove the NIS+ Namespace
-
Remove the .rootkey file from the root master.
rootmaster# rm -f /etc/.rootkey
-
Remove the groups_dir and org_dir subdirectories from the root master root domain.
rootmaster# nisrmdir -f groups_dir.domainname rootmaster# nisrmdir -f org_dir.domainname
Where domainname is the name of the root domain, for example, doc.com.
-
Remove the root domain.
rootmaster# nisrmdir -f domainname
Where domainname is the name of the root domain, for example, doc.com.
-
Stop the keyserver.
client# svcadm disable /network/rpc/keyserv
-
Stop the NIS+ service.
This kills the rpc.nisd daemon and the nis_cachemgr.
rootmaster# svcadm disable -t /network/rpc/nisplus:default
-
Stop the name service cache (nscd).
rootmaster# svcadm disable -t /system/name-service-cache:default
-
Create a new domain.
rootmaster# domainname name
Where name is the name of the new domain; for example, the name of the domain before you installed NIS+.
-
Remove the existing /etc/defaultdomain file.
rootmaster# rm /etc/defaultdomain
-
Recreate the /etc/defaultdomain file with the new domain name.
rootmaster# domainname > /etc/defaultdomain
-
Replace the original nsswitch.conf file.
If you set up this server with nisserver -r, you can use:
rootmaster# cp /etc/nsswitch.conf.no_nisplus /etc/nsswitch.conf
Alternatively, you can copy over one of the default switch template files. To use the default NIS switch file template, you would type:
rootmaster# cp /etc/nsswitch.nis etc/nsswitch.conf
To use the default /etc files switch file template, you would type:
rootmaster# cp /etc/nsswitch.files etc/nsswitch.conf
-
Remove the /var/nis directory and files.
rootmaster# rm -rf /var/nis/*
-
Start the NIS+ service.
rootmaster# svcadm enable /network/rpc/nisplus:default
- © 2010, Oracle Corporation and/or its affiliates