To configure secure NFS on NIS master and slave servers,
complete the following procedure.
For information about using NFS with NIS+, see Network Information Services (NIS and NIS+) Guide.
On the
NIS master server, create
an entry for each user in the
NIS /etc/publickey file by using the
newkey command as follows:
- For a regular user, type:
smit newkey
OR
newkey -u username
For a root user on a host machine, type:
newkey -h hostname
- Alternatively, users can establish their own public keys by using
the chkey or newkey commands.
Create the NIS publickey map by following the instructions in Network Information Services (NIS and NIS+) Guide. The corresponding NIS publickey.byname map resides only on the NIS servers.
Uncomment the following stanzas in the
/etc/rc.nfs file:
#if [ -x /usr/sbin/keyserv ]; then
# startsrc -s keyserv
#fi
#if [ -x /usr/lib/netsvc/yp/rpc.ypupdated -a -d /etc/yp/`domainname` ]; then
# startsrc -s ypupdated
#fi
#DIR=/etc/passwd
#if [ -x /usr/lib/netsvc/yp/rpc.yppasswdd -a -f $DIR/passwd ]; then
# startsrc -s yppasswdd
#fi
- Start the keyserv, ypupdated, and yppasswdd daemons by using the startsrc command.
To configure secure NFS on NIS clients, start the keyserv daemon by using the startsrc command.