Chapter 22 Removing NIS+

This chapter describes how to use the NIS+ directory administration commands to remove NIS+ from clients, servers, and the namespace as a whole.

For information on disassociating an NIS+ replica server from a directory so that it no longer acts as a replica for that domain, see The nisrmdir Command.

NIS+ might not be supported in a future release. Tools to aid the migration from NIS+ to LDAP are available in the Solaris 9 operating environment (see System Administration Guide: Naming and Directory Services (DNS, NIS, and LDAP)). For more information, visit http://www.sun.com/directory/nisplus/transition.html.

Removing NIS+ From a Client Machine

This section described how to remove NIS+ from a client machine. Keep in mind that removing NIS+ from a client machine does not remove the NIS+ name service from your network. See Removing the NIS+ Namespace for information on removing the NIS+ name service from a network and returning to either NIS or /etc files for name purposes.

Removing NIS+ That Was Installed Using nisclient

To remove NIS+ from a client machine that was set up as an NIS+ client using the nisclient -i script as described in Chapter 4, Configuring NIS+ With Scripts, run nisclient with the -r option:

client# nisclient -r

nisclient -r simply undoes the most recent iteration of nisclient -i; it restores the previous naming system used by the client, such as NIS or /etc files.

Removing NIS+ That Was Installed Using NIS+ Commands

To remove NIS+ from a client machine that was set up as an NIS+ client using the nisaddcred, domainname, and nisinit commands as described in Chapter 4, Configuring NIS+ With Scripts, perform the following steps:

1. Remove the .rootkey file.

   client# rm -f /etc/.rootkey

2. Locate and kill the keyserv, nis_cachemgr, and nscd processes.

   client# ps -ef | grep keyserv root 714 1 67 16:34:44 ? keyserv client# kill -9 714 client# ps -ef | grep nis_cachemgr root 123 1 67 16:34:44 ? nis_cachemgr client# kill -9 123 client# ps -ef | grep nscd root 707 1 67 16:34:44 ? nscd client# kill -9 707

3. Remove the /var/nis directory and files.

   clientmachine# rm -rf /var/nis/*

Removing NIS+ From a Server

This section describes how to remove NIS+ from an NIS+ server.

Keep in mind that removing NIS+ from a server does not remove the NIS+ name service from your network. See Removing the NIS+ Namespace for information on removing the NIS+ name service from a network and returning to either NIS or /etc files for naming purposes.

You can replace a machine that you are using as an NIS+ server with another machine. See Replacing Server Machines.

To remove NIS+ from a server, follow these steps:

1. Perform the steps necessary to remove NIS+ from a client.

   An NIS+ server is also an NIS+ client. This means that you must first remove the client-related part of NIS+. You can use nisclient -r as described in Removing NIS+ That Was Installed Using nisclient or the NIS+ command set as described in Removing NIS+ That Was Installed Using NIS+ Commands.

2. Remove the server's groups_dir and org_dir directories.

   server# nisrmdir -f groups_dir.domainname server# nisrmdir -f org_dir.domainname

3. Locate and kill the keyserv, rpc.nisd, nis_cachemgr, and nscd processes on the server.

   server# ps -ef | grep rpc.nisd root 137 1 67 16:34:44 ? rpc.nisd server# kill -9 137 server# ps -ef | grep keyserv root 714 1 67 16:34:44 ? keyserv server# kill -9 714 server# ps -ef | grep nis_cachemgr root 123 1 67 16:34:44 ? nis_cachemgr server# kill -9 123 server# ps -ef | grep nscd root 707 1 67 16:34:44 ? nscd server# kill -9 707

4. Remove the /var/nis directory and files.

   rootmaster# rm -rf /var/nis/*

Removing the NIS+ Namespace

To remove the NIS+ namespace and return to using either NIS or /etc files for name services, follow these steps:

1. Remove the .rootkey file from the root master.

   rootmaster# rm -f /etc/.rootkey

2. Remove the groups_dir and org_dir subdirectories from the root master root domain.

   rootmaster# nisrmdir -f groups_dir.domainname rootmaster# nisrmdir -f org_dir.domainname

   Where domainname is the name of the root domain, for example, doc.com.

3. Remove the root domain.

   rootmaster# nisrmdir -f domainname

   Where domainname is the name of the root domain, for example, doc.com.

4. Locate and kill the keyserv, rpc.nisd, nis_cachemgr, and nscd processes.

   rootmaster# ps -ef | grep rpc.nisd root 137 1 67 16:34:44 ? rpc.nisd rootmaster# kill -9 137 rootmaster# ps -ef | grep keyserv root 714 1 67 16:34:44 ? keyserv rootmaster# kill -9 714 rootmaster# ps -ef | grep nis_cachemgr root 123 1 67 16:34:44 ? nis_cachemgr rootmaster# kill -9 123 rootmaster# ps -ef | grep nscd root 707 1 67 16:34:44 ? nscd rootmaster# kill -9 707

5. Create a new domain.

   rootmaster# domainname name

   Where name is the name of the new domain; for example, the name of the domain before you installed NIS+.

6. Remove the existing /etc/defaultdomain file.

   rootmaster# rm /etc/defaultdomain

7. Recreate the /etc/defaultdomain file with the new domain name.

   rootmaster# domainname > /etc/defaultdomain

8. Replace the original nsswitch.conf file.

   If you set up this server with nisserver -r, you can use:

   rootmaster# cp /etc/nsswitch.conf.no_nisplus /etc/nsswitch.conf

   Alternatively, you can copy over one of the default switch template files. To use the default NIS switch file template, you would type:

   rootmaster# cp /etc/nsswitch.nis etc/nsswitch.conf

   To use the default /etc files switch file template, you would type:

   rootmaster# cp /etc/nsswitch.files etc/nsswitch.conf

9. Restart the keyserv process.

   rootmaster# keyserv

10. Remove the /var/nis directory and files.

    rootmaster# rm -rf /var/nis/*

11. Now restart your other name service (NIS or /etc files).