Managing Systems and Workgroups: A Guide for HP-UX System Administrators
Administering a System: Managing System Security
Network Information Service Plus (NIS+)
Chapter 8 841
3. Start the ttsyncd daemon. See ttsyncd (1M). You can execute the
command,
/sbin/init.d/comsec start
Setting Up the
Client
4. On each client, perform the following steps in either order:
• Set up the NIS+ client. The steps are described in Installing and
Administering NFS Services. See also nisserver (1M), nispopulate
(1M), and nisclient (1M).
• Convert the client to trusted mode using SAM. See “Setting Up
Your Trusted System” on page 790.
NIS+ Trusted Table and the ttsyncd Daemon
The Trusted Table Synchronization Daemon ttsyncd is automatically
started at boot time if NIS+ is configured, if the system is an HP-UX
NIS+ master server, and if TTSYNCD=1 is in the file
/etc/rc.config.d/comsec, which is called by the system start-up
script /sbin/init.d/comsec.
Without ttsyncd, the trusted table will not be created and Trusted
Systems cannot be centrally administered.
The NIS+ trusted table is equivalent to the protected password database
(that is, the trusted computing base, /tcb/) of local users, which can be
centrally administered. As system administrator, you can modify the
security attributes of the trusted table created by ttsyncd.
The ttsyncd daemon sets up the trusted table entry for each user name
found in the password table. At the table entry creation time, ttsyncd
initializes the table to the default values.
On a running system, if you add a new NIS+ user, ttsyncd will add the
user entry in the trusted table when the next synchronization time is up.
ttsyncd has various options to specify a time interval for synchronizing
the trusted table with the passwd table. You can find more details with
examples in ttsyncd (1M).
The following commands can be used to start and stop the daemon
manually.
To start the daemon,
/sbin/init.d/comsec start