Manualshelf

NFS Services Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX 11i v1 Networking Software
311312313314315316317318319320
Troubleshooting NFS Services
Common Problems with NIS+
Chapter 8 319
If you must be a member of an NIS+ group to access the object, issue
the nisgrpadm -l command to make sure your NIS+ principal name
is included in the group. If necessary, use the nisgrpadm(1) command
to add your principal name to the group.
Issue the ps -ef command to make sure the keyserv(1M) daemon is
running. If it is not, start it. Make sure automount, rpc.nisd, and
sendmail are running. If they are not, start them.
If you changed the root password with the nispasswd command, log
in as a user with modify permission for the passwd and cred tables,
and change the root password back. To change the root password,
issue the passwd command followed by the chkey -p command.
CAUTION You can change the root password on the root master server, but do
not change the public or private key on the root master server. The
root master server’s keys are embedded in every directory object on
every client, replica server, and subdomain server.
Make sure the NIS+ hosts table does not contain a host with the
same name as the user. If a host has the same name as a user, one
credential will overwrite the other, and either the user or the root
user will no longer be able to perform a keylogin. (The keylogin is
performed automatically when a user logs in, if the user’s login
password is the same as the user’s secure RPC password.)
Use nismatch(1) to find the credentials for the user or host in the
cred table. If both a Local and a DES credential exist, the
credentials are for a non-root user. If only a DES credential exists,
the credential is for a root user. If necessary, change the host name.
(It is easier to change a host name than to change a user name.) You
can set up an alias to map the host’s old name to the new name.
NOTE When you are running nisaddcred or nisclient, if you see a
Changing Key message instead of an Adding Key message, you have
a duplicate user or host name in your domain.
If you have recently changed the default domain of a client host,
remove the /etc/.rootkey file on the host and rerun the
nisclient(1M) script to initialize the host.