Managing Systems and Workgroups: A Guide for HP-UX System Administrators
Administering a System: Managing System Security
Network Information Service Plus (NIS+)
Chapter 8840
Using SAM with NIS+
The HP-UX System Administration Manager (SAM) supports the
administration of users and groups in the NIS+ tables. Operations that
support locally defined users and groups (including adding, modifying,
and removing) also support users and groups defined in the NIS+ tables.
This includes the administration of user attributes when a system is in
trusted mode. The administration of NIS+ users and groups can be done
from any system whose default NIS+ domain is the domain to be
administered.
NIS+ Trusted System capabilities are part of the Auditing and Security
area of SAM. When NIS+ is configured on a system, the Audited NIS+
Users subarea lists the users in the default NIS+ domain and allows
them to be selected to have auditing turned on or off. The auditing (or
nonauditing) takes effect when an NIS+ user logs into a Trusted System
in the NIS+ domain. Local users are displayed in the Audited Local
Users subarea of a Trusted System which allows them to be selected to
have auditing turned on or off for that system.
Setting up NIS+ with Trusted Mode
To configure NIS+ and trusted mode on an HP-UX system, you can
install them in either order. The trusted table can be created by starting
the ttsyncd daemon.
Setting Up the
Server
1. On the server, perform the following steps in either order:
• Set up the NIS+ server. The steps are described in Installing and
Administering NFS Services. See also nisserver (1M), nispopulate
(1M), and nisclient (1M).
• Convert the server to trusted mode using SAM. See “Setting Up
Your Trusted System” on page 790.
2. If you want the ttsyncd daemon to start automatically whenever the
system is booted, make sure the entry in the file
/etc/rc.config.d/comsec is:
TTSYNCD=1
If not, make sure it’s:
TTSYNCD=0