Configuring Servers to Accept only New Security Mechanism Credentials--Example (Solaris Naming Administration Guide)

Solaris Naming Administration Guide

Previous: Changing the Password Protecting New Credentials
Next: Removing Old Credentials from the cred Table

Configuring Servers to Accept only New Security Mechanism Credentials--Example

Run nisauthconf(1m) on each NIS+ server and reboot. In this example, the NIS+ server will be configured to only accept authentication of dh640-0 credentials.

server#  nisauthconf dh640-0
server# /etc/reboot

Optionally, the directory objects can now be updated to remove the old public keys. This should be done from the master server and nisupdkeys(1m) should be run once for each directory served by the servers authenticating only with the new security mechanism. In this example, the directories to be updated are doc.com, org_dir.doc.com., and groups_dir.doc.com..

masterserver#	nisupdkeys doc.com.
			(screen notices not shown)
masterserver#  nisupdkeys org_dir.doc.com.
			(screen notices not shown)
masterserver#	nisupdkeys groups_dir.doc.com.

Previous: Changing the Password Protecting New Credentials
Next: Removing Old Credentials from the cred Table