Master Server 端:
yum install -y ypserv rpcbind yp-tools ypbind
nisdomainname siton #設置域名
vi /etc/sysconfig/network #永久設置域名
NISDOMAIN=siton
YPSERV_ARGS="-p 1011" #可省略
vi /etc/ypserv.conf #根據需求修改相應規則
dns: no
* : * : * : none
vi /etc/sysconfig/yppasswdd #將 yppasswdd 啓動在固定端口,可省略
YPPASSWDD_ARGS="--port 1012"
systemctl start ypserv
systemctl start rpcbind
systemctl start yppasswdd.service
systemctl enable yppasswdd.service
systemctl enable rpcbind
systemctl enable ypserv
useradd -m -s /bin/bash nisuser #新建 nis 用戶,以 nisuser 爲例
passwd nisuser
/usr/lib64/yp/ypinit -m #初始化 nis 服務器和映射表
cd /var/yp
make #更新 nis 賬戶和資料庫
vi /var/yp/Makefile #開啓 slave 服務推送
NOPUSH=false
vi /var/yp/ypservers #加入 slave 節點的主機名
node1
node2
systemctl start ypxfrd
systemctl enable ypxfrd
Slave Server 端:
yum install -y ypserv rpcbind yp-tools ypbind
nisdomainname siton
vi /etc/sysconfig/network
NISDOMAIN=siton
YPSERV_ARGS="-p 1011"
vi /etc/ypserv.conf
vi /etc/sysconfig/yppasswdd
/usr/lib64/yp/ypinit -s node1 #同步 Master 的源數據庫
客戶端:
yum install yp-tools ypbind -y
nisdomainname siton
vi /etc/sysconfig/network
NISDOMAIN=siton
YPSERV_ARGS="-p 1011"
vim /etc/nsswitch.conf #賬戶信息讀取順序添加 nis
passwd: files nis sss
shadow: files nis sss
group: files nis sss
hosts: files nis dns myhostname
vi /etc/yp.conf
domain siton server node1
ypserver node1
vi /etc/sysconfig/authconfig #允許 nis 登錄
USENIS=yes
vi /etc/pam.d/system-auth #PAM 模塊加入 nis
password sufficient pam_unix.so sha512 shadow nis nullok try_first_pass use_authtok
systemctl start rpcbind
systemctl enable rpcbind
systemctl enable ypbind.service
systemctl start ypbind.service
yptest #客戶端測試