LDAP replacing NIS...?

• Previous message: Grzegorz Czaplinski: "Re: adminlog"
• Next in thread: Nick Santucci: "[focus-sun] Re: LDAP replacing NIS...?"
• Reply: Nick Santucci: "[focus-sun] Re: LDAP replacing NIS...?"
• Reply: David M. Fetter: "Re: LDAP replacing NIS...?"
• Reply: LDC - Pablo Endres Lozada: "Re: LDAP replacing NIS...?"
• Reply: Akop Pogosian: "Re: LDAP replacing NIS...?"
• Reply: Pavol Kvanka: "Re: LDAP replacing NIS...?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 28 Jan 2003 09:15:10 -0800 (PST)
From: Gregory Hicks <ghicks@cadence.com>
To: focus-sun@securityfocus.com

I have the unenviable task of figuring out how, in a mostly Sun
environment, to use LDAP to replace all NIS maps.

We are already using LDAP to maintain hosts, passwd, and group with
networks, services, et al to follow in the near future. This however,
just replaces vi with the LDAP db modifying calls.

Is there a method of having NIS query LDAP directly?

Has anyone tried to use LDAP to replace the NIS passwd (also hosts,
group, aliases, et al)? We have converted a system to using LDAP
queries to authenticate users working, but once we changed to LDAP,
users can no longer login to their CDE desktop.

Given a mix of SunOS 4.x, Solaris 2.5, 2.5.1, 2.6, 7-9, is there a
really good method to make the switch? Or are we, for the near term,
going to be maintaining the maps in LDAP and periodically 'pushing' the
source maps to the remote NIS masters?

Or is this a truly LONG TERM project (3-6 years)

(I also have to make HP-UX, AIX, and Linux fit this same model, but
this is not the right forum for these OSes...)

Any pointers, advice, will be appreciated.

Regards,
Gregory Hicks

-------------------------------------------------------------------
Gregory Hicks | Principal Systems Engineer
Cadence Design Systems | Direct: 408.576.3609
555 River Oaks Pkwy M/S 6B1 | Fax: 408.894.3400
San Jose, CA 95134 | Internet: ghicks@cadence.com

"The trouble with doing anything right the first time is that nobody
appreciates how difficult it was."

When a team of dedicated individuals makes a commitment to act as
one... the sky's the limit.

"There is no limit to what a man can do or how far he can go if he
doesn't mind who gets the credit." - Robert Woodruff

• Next message: Nick Santucci: "[focus-sun] Re: LDAP replacing NIS...?"
• Previous message: Grzegorz Czaplinski: "Re: adminlog"
• Next in thread: Nick Santucci: "[focus-sun] Re: LDAP replacing NIS...?"
• Reply: Nick Santucci: "[focus-sun] Re: LDAP replacing NIS...?"
• Reply: David M. Fetter: "Re: LDAP replacing NIS...?"
• Reply: LDC - Pablo Endres Lozada: "Re: LDAP replacing NIS...?"
• Reply: Akop Pogosian: "Re: LDAP replacing NIS...?"
• Reply: Pavol Kvanka: "Re: LDAP replacing NIS...?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: integrating custom NIS maps into LDAP ... >| maps are in use? ... I am working on a project to migrate to LDAP from NIS and we ... > maps so that it uses your unique nisMap entries in your LDAP. ... (comp.unix.admin) Re: LDAP replacing NIS...? ... Try replacing NIS with kerberos. ... Gregory Hicks wrote: ... to use LDAP to replace all NIS maps. ... (Focus-SUN) Re: integrating custom NIS maps into LDAP ... Kevin Collins wrote: ... | maps are in use? ... I am working on a project to migrate to LDAP from NIS and we ... (comp.unix.admin) Re: Directory Server LDAP/LDIF import - working yet not working??? ... I then generated LDIF files from the /etc files on our NIS ... > 10,000-foot understanding of LDAP. ... > I already downloaded the various LDAP BluePrints and Directory Server ... (comp.unix.solaris) Directory Server LDAP/LDIF import - working yet not working??? ... We currently have NIS and are looking to get rid of NIS completely in ... I then generated LDIF files from the /etc files on our NIS ... 10,000-foot understanding of LDAP. ... This is to be nothing more than importing /etc/passwd (and ... (comp.unix.solaris)