Initializing Client Using a Cold-Start File
This task initializes an NIS+ client by using the cold-start file of another NIS+ client, preferably one from the same domain. This is the most secure method of setting up an NIS+ client. It ensures that the client obtains its NIS+ information from a trusted server, something that cannot be guaranteed by the host-name or broadcast method.
Security Considerations
You must perform this task as superuser on the client.
Prerequisites
The servers specified in the cold-start file must already be configured and running NIS+.
The client must use the same Diffie-Hellman key lengths as those on the master server. See nisauthconf(1M).
Information You Need
You need the name and location of the cold-start file you will copy.
Initializing an NIS+ Client--Task Map
Table 6-5 Initializing an NIS+ Client|
Task |
Description |
For Instructions, Go To |
|
|---|---|---|---|
|
InitializingClient via Cold-Start File |
Use nisinit command to initialize an NIS+ client via a cold-start file | ||
How to Initialize a Client--Cold-Start Method
-
Copy the other client's cold-start file.
Copy the other client's cold-start file into a directory in the new client. This may be easier to do while logged on as yourself rather than as superuser on the client. Be sure to switch back to superuser before initializing the client.
Don't copy the NIS_COLD_START file into /var/nis, because that file gets overwritten during initialization. This example copies the cold-start file of previously initialized client1 into the /tmp directory of uninitialized client2.
client2# exit client2% rcp client1:/var/nis/NIS_COLD_START /tmp client2% su
-
Initialize the client from the cold-start file.
Use the nisinit command with the -c and -C options.
client2# nisinit -c -C /tmp/NIS_COLD_START This machine is in the doc.com. NIS+ domain. Setting up NIS+ client ... All done.
- © 2010, Oracle Corporation and/or its affiliates