problems with NIS client
From: David Guzman (david_aaron_at_softhome.net)
Date: 06/18/05
- Next message: Ohmster: "Re: Configure DSL and Linux network"
- Previous message: someone: "comcast wireless"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Fri, 17 Jun 2005 22:57:33 -0400
Hi everyone,
I have a complicated problem, that keeps me working and reading docs for 3
days. The situation comes next. I am implementing a small network in our
lab, I have a NIS server running on FreeBSD. In my everyday machine (an
AMD64) I have installed Gentoo Stage 1. The NIS client configuration is
giving me headaches. I cannot login, I got the following message in
/var/log/pwdfail/current
Jun 17 17:04:23 [login(pam_unix)] authentication failure;
logname= uid=0 euid=0 tty=/dev/vc/3 ruser= rhost= user=david
Jun 17 17:04:25 [login] FAILED LOGIN 1 FROM /dev/vc/3 FOR david,
Authentication failure
login is reading in etc/pam.d/login, which comes next:
#%PAM-1.0
auth requisite /lib/security/pam_unix.so nullok
auth required /lib/security/pam_securetty.so
auth required /lib/security/pam_stack.so service=system-auth
auth required /lib/security/pam_nologin.so
account required /lib/security/pam_unix.so audit
account required /lib/security/pam_stack.so service=system-auth
password required /lib/security/pam_unix.so nis
password required /lib/security/pam_stack.so service=system-auth
session required /lib/security/pam_unix.so
session required /lib/security/pam_stack.so service=system-auth
I did some NIS tests on the Gentoo box and I could obtain the NIS maps:
# ypcat -k netgroup
net_adm (,netadm,ypnet.xxxx.cl)
devel (,david,ypnet.xxxx.cl) (,felipe,ypnet.xxxx.cl)
term_adm (,termadm,ypnet.xxxx.cl)
# ypcat -k netgroup.byuser
felipe.ypnet.xxxx.cl devel
david.ypnet.xxxx.cl devel
netadm.ypnet.xxxx.cl net_adm
termadm.ypnet.xxxx.cl term_adm
Even,
# ypcat passwd
david:*:1001:1001:User &:/home/david:/bin/sh
The /etc/passwd /etc/shadow and /etc/group have the corresponding netgroup
markers:
+@devel:::::: (in passwd and shadow)
+:*:: (in group)
In the FreeBSD NIS machine I got no login error messages, like password
failed or user unknown. I guess that the login process is not calling NIS,
I am only doing local authentication. Here I don't know maybe is a problem
with PAM (version 0.78-r2) or portmap (or both). Here are my current
configuration files:
--> /etc/yp.conf
ypserver bsdnis.xxxx.cl
domain ypnet.xxxx.cl broadcast
--> /etc/nsswitch.conf
passwd: compat nis
shadow: compat nis
group: compat nis
hosts: files dns
networks: files dns
services: db files nis
protocols: nis [NOTFOUND=return] db files
rpc: nis [NOTFOUND=return] db files
ethers: db files nis
netmasks: files
netgroup: nis files
bootparams: files
automount: files
aliases: files
As a test I started ypbind from command line with debug option enabled. I
got the following messages:
# ypbind -debug
parsing config file
Trying entry: ypserver bsdnis.xxxx.cl
parsed ypserver bsdnis.xxxx.cl
add_server() domain: ypnet.xxxx.cl, host: bsdnis.xxxx.cl, slot: 0
Trying entry: domain ypnet.xxxx.cl broadcast
parsed domain 'ypnet.xxxx.cl' broadcast
add_server() domain: ypnet.xxxx.cl, broadcast
[Welcome to ypbind-mt, version 1.17.2]
ping host 'bsdnis.xxxx.cl', domain 'ypnet.xxxx.cl'
Answer for domain 'ypnet.xxxx.cl' from server 'bsdnis.xxxx.cl'
Pinging all active server.
Pinging all active server.
.....
Any comments will be appreciated.
Thanks
David
- Next message: Ohmster: "Re: Configure DSL and Linux network"
- Previous message: someone: "comcast wireless"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
