Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Interoperability for Unix Trouble Synchronizing with Server 2003, R2

Posted on 2008-10-28
4
Medium Priority
?
893 Views
Last Modified: 2013-12-19
Trying to follow;
1) http://technet.microsoft.com/en-us/library/cc737658.aspx (Server for NIS, Step-by-Step)
2) http://technet.microsoft.com/en-us/library/cc780148.aspx (Deploying Password Synchronization)

Environment:
1) Windows Server 2003 R2, Domain Controller (Master for NIS)
     Installed: Server for NIS, and Password Synchronization for the Windows Components, Active Directory Services, Identity for Unix Module.

2) Redhat Enterprise 5 Server, Clean Install (Slave for NIS)
     Installed: yp-tools, port-map and ssod


Scenario: (See attached file for screen shots and log info)
On the Windows side of the house, if we enter into the Management console for Unix, we can see that the service is started, the Master and Slave have been defined, encryption has been set, Use windows for NIS is check marked. (The port number has been changed on purpose; but the reflection was made on the other server correctly.)

On the Redhat side; I can see the passwd database from the NIS.
[root@amf-asic1 ~]# ypcat passwd
timmy:ABCD!efgh12345$67890:10013:10000::/home/timmy:/bin/tcsh
[root@amf-asic1 ~]#
[root@amf-asic1 init.d]# ./ypbind restart
Shutting down NIS services:                                [  OK  ]
Binding to the NIS domain:                                 [  OK  ]
Listening for an NIS domain server.
[root@amf-asic1 init.d]# ./yppasswdd start
Starting YP passwd service:                                [  OK  ]
[root@amf-asic1 init.d]# ./ypxfrd start
Starting YP map server:                                    [  OK  ]
[root@amf-asic1 init.d]# cd /opt/Ssod/
[root@amf-asic1 Ssod]# ./Ssod -v
Port:  9817
Use shadow:  1
Case Ignore Name:  1
Use temp:  0
Use NIS:  1
File path:  /etc/shadow
Temp path:  /etc
Pam_supported  0
NIS update path:  /var/yp
NIS update makefile:  Makefile
[root@amf-asic1 Ssod]#

So I know I'm getting information from the NIS. but it's not relfected in my passwd file and I cannot log in. I assume that is due to the password not being sync'd. And I cannot change the password for a user on the Redhat side.
[root@amf-asic1 ~]# yppasswd timmy
Changing NIS account information for timmy on amf-dc1.
Please enter root password:
Changing NIS password for timmy on amf-dc1.
Please enter new password:
Please retype new password:
Error while changing the NIS password.
The NIS password has not been changed on amf-dc1.

[root@amf-asic1 ~]# yppasswd timmy
Changing NIS account information for timmy on amf-dc1.
Please enter root password:
Changing NIS password for timmy on amf-dc1.
Please enter new password:
Please retype new password:
Error while changing the NIS password.
The NIS password has not been changed on amf-dc1.

[root@amf-asic1 ~]# Tried it twice to make sure I wasn't misssppeeling it! :D

I really need to get these two machines to sync up properly.

Anyone have an answer for this? I've been at it for days. My brain feels like swiss cheese.
ScreenShots1.doc
0
Comment
Question by:bindnera
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 62

Accepted Solution

by:
gheist earned 1500 total points
ID: 22830825
What does "password synchronization" do? I have not seen any references in M$ doscs. How does rpcinfo -p windows_ip look from unix side?
How does nsswitch.conf look on Linux?

Why dont you use winbind but some obscure heap of extra software? Winbind works against all versions of domain servers.
0
 
LVL 62

Expert Comment

by:gheist
ID: 23071182
Was WINBIND the answer or you fixed NIS (M$ supports somewhat old revision)?
0
 
LVL 1

Author Comment

by:bindnera
ID: 23073893
Gheist-

WINDBIND is.. technically.. a right answer; but there is a reason that I need NIS. The server will be placed into a a live/existing network, and the stupid(PREVIOUS) IT department before me made the current setup quite combersome. Everything is networked together via UID/GIDs. I need to keep a handfull of the UIDs and GIDs; Windows Server 2003, R2 will allow you to perform a NIS like function and intergrate a Unix NIS with Active directory.  We are trying to do manny things at once and felt this it would be the "simplest" (GOD WERE We WRONG) way. There is very little documentation from Microsoft and even fewer white papers on the internet.

In the end, we have installed WINBIND and are currently working on a long drawn out method to fix everything as quickly as possible. More or less it boiled down to, "just make it right and follow the industry standard."
0
 
LVL 62

Expert Comment

by:gheist
ID: 23076169
First sentence of last paragraph descibes definite industry standard, thank you for taking time explaining. Good luck!
0

Featured Post

Optimum High-Definition Video Viewing and Control

The ATEN VM0404HA 4x4 4K HDMI Matrix Switch supports 4K resolutions of UHD (3840 x 2160) and DCI (4096 x 2160) with refresh rates of 30 Hz (4:4:4) and 60 Hz (4:2:0). It is ideal for applications where the routing of 4K digital signals is required.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
This month, Experts Exchange’s free Course of the Month is focused on CompTIA IT Fundamentals.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Suggested Courses

664 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question