NFS Services Administrator's Guide
Configuring and Administering NIS+
Administering NIS+
Chapter 5 251
To Create New Credentials for the Root Master Server
Sometimes the credentials for the root master server become corrupted
and unusable, and it is necessary to create new ones. Follow this
procedure to recreate the credentials for the root master server host.
1. Log in as root to every NIS+ server in the namespace, and issue the
following commands to kill the nis_cachemgr process and restart
rpc.nisd at security level 0:
ps -ef | grep nis_cachemgr
kill PID
ps -ef | grep rpc.nisd
kill PID
rpc.nisd -S 0
2. Log into the root master server, and issue the following command to
create new credentials for the root master server host:
nisaddcred -p unix.hostname@domain -P hostname.domain des
where hostname is the name of the root master server. Note that the
secure RPC netname (following -p) does not end in a dot, while the
NIS+ principal name (following -P) does end in a dot.
Enter the root password when prompted for it.
If the nisaddcred command hangs, perform step 3, below, then try
step 2 again.
3. On the root master server, issue the following commands to kill the
keyserv daemon and remove the /etc/.rootkey file:
ps -ef | grep keyserv
kill PID
rm /etc/.rootkey
4. On the root master server, issue the following commands. Note that
the domainname must end in a dot.
nisupdkeys org_dir.domainname.
nisupdkeys groups_dir.domainname.
nisupdkeys domainname.
5. On the root master server, issue the following commands:
nisping org_dir
nisping groups_dir
nisping domainname