Solaris 10 client computer won't display secondary groups via NIS?

Hi,

My RHEL 6.2 Server provides NIS & NFS to a Solaris 10 client computer. Everything works except the user can't save files in directories where they are secondary group members.

For example, On the Solaris Computer, the users are primary members of their own group and can save files to NFS directories where they own the group. But, access is denied if they try to save to a directory where they are a secondary group member.

There are no issue when the user tries to do this on the Linux Server.

I typed the "id" command and the user's primary and secondary groups show up on the Server, but only the primary group shows up when I type the "id" command on the Solaris box.

I am not sure how to fix this on the Solaris box. Any assistance would be greatly appreciated!
Mccalma1Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

arnoldCommented:
Are the group IDs synchronized across the systems?

I.e. nis groupX has gid 51 and this group exists and has the same gid on the solaris box?
The UID/GID is the information.
0
Mccalma1Author Commented:
Yes they are synchronized. There are Tru64 Alpha Computers on the same network and they work as expected. It's something weird with the Solaris box?????
0
arnoldCommented:
If you run ypcat group and compare to /etc/group there are no gid overlaps, I.e. a group in each with the same gID?

Id user, reports all the groups of which the user is a member?
0
Newly released Acronis True Image 2019

In announcing the release of the 15th Anniversary Edition of Acronis True Image 2019, the company revealed that its artificial intelligence-based anti-ransomware technology – stopped more than 200,000 ransomware attacks on 150,000 customers last year.

Joseph GanSystem AdminCommented:
On Solaris, if you enter "groups uid",
Dose it show a secondary group ?
0
Joseph GanSystem AdminCommented:
If not, need to add it into /etc/group file on Solaris server.
0
arnoldCommented:
Nsswitch.conf do you have nis referenced for passwd, group and shadow?
http://docs.oracle.com/cd/E19455-01/806-1386/6jam5ahkg/index.html
Since you use NIS, /etc/group need only contain local groups.

Which nis tables do you have populated?
ypcat passwd
ypcat group
ypcat shadow
ypcat hosts
0
Mccalma1Author Commented:
nsswitch.conf:
Password and group are set to "compat"
shadow is not in this file. Probably because shadow & passwd files are set to merge in the /var/yp/Makefile

The following NIS tables are set to populate:
ypcat passwd
ypcat group
ypcat hosts
ypcat netgroup

I'm not sure if I need netgroup. Shouldn't the group map be sufficient?

Also, what doesn't make sense is that the "ypcat netgroup" results are the same on the Linux Server and the Solaris Client. But. the data in /etc/netgroup NIS source file is different. I would have expected the source file to be the same as the ypcat netgroup results. I typed "make -C /var/yp" and that didn't update the netgroup map.
0
arnoldCommented:
Ref the oracle link for the versions of nsswitch.conf based on the type
LDAP, nis, nis+, dns.
compat?

try adding the group:nis [NOTFOUND=return] compat files in nsswitch.conf and see whether that fixes things/makes a difference.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Linux Networking

From novice to tech pro — start learning today.