Solaris authentication using LDAP vs NIS+

Solaris authentication using LDAP vs NIS+

Post by Sarah Tane » Sun, 05 Dec 2004 08:34:38


Hi, I'm a newbie for the Solaris environment. I'm a bit familiar since
I've work on Sun environment since Sun 3 hardware running SunOS up to
Solaris 2.2. I've used NIS(the old YP) but not NIS+. I was wondering,
which one is a better solution for authentication between NIS+ and LDAP?

Secondly, if there are some quick and practical tutorial for
implementing both solution?

Thanks
 
 
 

Solaris authentication using LDAP vs NIS+

Post by ohay » Sun, 05 Dec 2004 08:54:18


Hi,

I just got done implementing NIS+ on a small testbed network at work.
This was primarily just for testing we're doing for compatibility with
NIS+ stuff.

A good source that I found for info on installing NIS+ on the web was
at:

http://www.yqcomputer.com/ +_FAQ.html

There's also Rick Ramsey's book, which I guess everyone recommends.
It's circa 1997, but I guess that tells you something about NIS+ :)...

My understanding is that NIS+ will be deprecated after Solaris 9 (I've
been reminded of this by a bunch of people, including our tech contacts
at Sun), so I guess the answer to your 1st question is probably "LDAP",
if you have the choice....

JMHO....

Jim

 
 
 

Solaris authentication using LDAP vs NIS+

Post by Scott Howa » Sun, 05 Dec 2004 10:03:38


NIS+ is in the process of being EOL'ed.
Unless you want to have to migrate in a few years, LDAP is a far better
option.

Scott
 
 
 

Solaris authentication using LDAP vs NIS+

Post by Sarah Tane » Mon, 06 Dec 2004 01:16:09


Does SUN promote the alternative? If I'm not mistaken, by using LDAP, it
will give us more pluggable authentication option, won't it? But, will
it work with the OpenLDAP or we have to use Sun LDAP Server?

Thanks
 
 
 

Solaris authentication using LDAP vs NIS+

Post by Matt » Mon, 06 Dec 2004 02:43:45


pam_ldap provides additional password and policy enforcement options
over pam_unix. I have been able to get Solaris hosts to authenticate
with openldap, so it can be done (just a bit more effort).
 
 
 

Solaris authentication using LDAP vs NIS+

Post by Gary Tay T » Tue, 07 Dec 2004 00:07:17


No sure if my HOWTO is what u r looking for:
http://www.yqcomputer.com/ ~garyttt

Gary
 
 
 

Solaris authentication using LDAP vs NIS+

Post by Sarah Tane » Tue, 07 Dec 2004 02:23:17


Would you mind to share your note on how to do it in OpenLDAP with the
rest of us?

Sarah
 
 
 

Solaris authentication using LDAP vs NIS+

Post by Sarah Tane » Thu, 09 Dec 2004 03:30:54


Thanks Gary, it is a very good step-by-step information. I'm still going
thru it as we speak.

I have a few questions if you don't mind,
1. Will this process works as well with Solaris 9 and 10?
2. When installing my 1st Solaris 8/9/10 server, is it possible to tell
them to use LDAP as its default authentication? Or we have to create
LDAP server prior to that.

Thanks