To configure secure NFS on NIS
master and worker servers, complete the following procedure.
On the
NIS master server, create
an entry for each user in the
NIS /etc/publickey file
by using the
newkey command as follows:
- For a regular user, type:
smit newkey
OR
newkey -u username
For a root user on a host machine, type:
newkey -h hostname
- Alternatively, users can establish their own public keys by using
the chkey or newkey commands.
Create the NIS publickey map.
The corresponding NIS publickey.byname map
resides only on the NIS servers.
Uncomment the following stanzas in the
/etc/rc.nfs file:
#if [ -x /usr/sbin/keyserv ]; then
# startsrc -s keyserv
#fi
#if [ -x /usr/lib/netsvc/yp/rpc.ypupdated -a -d /etc/yp/`domainname` ]; then
# startsrc -s ypupdated
#fi
#DIR=/etc/passwd
#if [ -x /usr/lib/netsvc/yp/rpc.yppasswdd -a -f $DIR/passwd ]; then
# startsrc -s yppasswdd
#fi
- Start the keyserv, ypupdated,
and yppasswdd daemons by using the startsrc command.
To configure secure NFS on NIS clients, start the keyserv daemon
by using the startsrc command.