Be sure that the NIS+ groups created as part of your namespace design (see "Establishing Password-aging Criteria, Principles, and Rules") correspond to the administrative resources you have identified for the transition. You could require a different set of NIS+ groups for the transition than for routine operation of an NIS+ namespace. Consider adding remote administrators to your groups in case you need their help in an emergency.
Make sure that group members have the proper credentials, that namespace objects grant the proper access rights to groups, and that the right group is identified as the group owner of the right namespace objects.
Table 5-1 provides a summary of commands that operate on NIS+ groups and group permissions.
Table 5-1 NIS+ Commands for Groups
Command |
Description |
---|---|
nisgrpadm |
Creates or deletes groups, adds, changes, lists, or deletes members |
niscat -o |
Displays the object properties of an NIS+ group |
nissetup |
Creates the basic structure of the directory in which a domain's groups are stored |
nisls |
Lists the contents of a directory |
NIS_GROUP |
Environment variable that overrides the value of nisdefaults for the shell in which it is set |
nischmod |
Changes an object's access rights |
nischown |
Changes the owner of an NIS+ object |
nischgrp |
Changes the group owner of an NIS+ object |
nistbladm -u |
Changes access rights to NIS+ table columns |
nisdefaults |
Displays or changes the current NIS+ defaults |