NIS password mapping question

Posted by papoyan on Stack Overflow See other posts from Stack Overflow or by papoyan
Published on 2010-05-19T22:35:25Z Indexed on 2010/05/19 22:40 UTC
Read the original article Hit count: 376

Filed under:

nis

|

user

|

mapping

|

nfs

|

remote

I have NIS server with user "techsupport", which has uid/gid = 517

I've configured NIS and NFS on that server, as well as NFS/NIS client on the remote web server.

Now I need to techsupport user to be able to login to web server using techsupport username, but HAVE root privileges. I need this, so I can easily track, which support agent doing what on the web server.

Everything works fine, when from NIS server, I ssh to the web server with tech support user

nisserver# ssh [email protected]

I can authenticate against the NIS server just fine, and my home directory that is on NIS server, get's mounted on web server just fine. The Only two problems I have are :

my GID on web server is webserver# id uid=517(techsupport) gid=517(client_jonny) groups=517(client_jonny)

(as you can see, that it picked up gid of a client that exists on the web server, since it's same number)

I need to make sure, that my "techsupport" user has ROOT privileges.

How can I achieve this? I remember that I've seen identical results elsewhere, but LDAP was used, is there a way to achieve this with NIS/NFS setup?

Thank you in advance,

© Stack Overflow or respective owner

Related posts about nis

NIS user not being added to NIS group

as seen on Server Fault - Search for 'Server Fault'
I have set up a NIS server and several NIS clients. I have a user and a group on the NIS server like so: /etc/passwd: myself:x:5000:5000:,,,:/home/myself:/bin/bash /etc/group: fishy:x:3001:otheruser,etc,myself,moreppl I imported the users and groups on the NIS client by adding +:::::: to /etc/passwd… >>> More
NIS client cannot find NIS server (Opensuse)

as seen on Server Fault - Search for 'Server Fault'
I installed NIS server on head node of a virtual cluster(VirtualBox). One of the node (let's say node-1) can find NIS server and work with it, but another node (node-2) just can't find the NIS server in Yast while it can ping and ssh to both head node and node-1. BTW, all the nodes are VMs, head node… >>> More
NIS password mapping question

as seen on Stack Overflow - Search for 'Stack Overflow'
I have NIS server with user "techsupport", which has uid/gid = 517 I've configured NIS and NFS on that server, as well as NFS/NIS client on the remote web server. Now I need to techsupport user to be able to login to web server using techsupport username, but HAVE root privileges. I need this,… >>> More
Can I use netgroup at an NIS Client (Redhat) to restrict access to it?

as seen on Server Fault - Search for 'Server Fault'
Our company has a central NIS configuration that we are using to access our teams servers (Redhat)... The current configuration allows all valid NIS authenticated users to connect to our servers. We cannot update or change something on the NIS Master Server... so... Is there a way to use netgroups… >>> More
Password rules for yppasswd

as seen on Server Fault - Search for 'Server Fault'
Hello all, I have a NIS master-slave setup and I would like to improve the password rules/complexity for it. Seems like if I introduce new rules to the NIS Master they are applicable only from there. What I mean: I want minimal password length of 9 characters. On the NIS master if I run 'passwd' it… >>> More

Related posts about user

blocking bad bots with robots.txt in 2012 [closed]

as seen on Pro Webmasters - Search for 'Pro Webmasters'
does it still work good? I have this: # Generated using http://solidshellsecurity.com services # Begin block Bad-Robots from robots.txt User-agent: asterias Disallow:/ User-agent: BackDoorBot/1.0 Disallow:/ User-agent: Black Hole Disallow:/ User-agent: BlowFish/1.0 Disallow:/ User-agent: BotALot Disallow:/ User-agent:… >>> More
Redirect network logs from syslog to another file

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
I keep logging way to much info (not needed, for now) in my syslog, and not daily or hourly... but instant. If I want to watch for something in my syslog I just can't because the network log keeps interfering. So, how can I redirect network logs to another file and/or stop logging it? Dec 10 17:01:33… >>> More
polkit: disable all users except those in group wheel?

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
Is it possible to do the following using 1 polkit .pkla file? Disable all users except those in the wheel group from using polkit. The users in the wheel group will need to provide the root password when using polkit. /etc/polkit-1/localauthority/50-local.d/wheel-only.pkla [disable all users… >>> More
More efficent way to do this?

as seen on Stack Overflow - Search for 'Stack Overflow'
I have a if function that works out how much of a users profile is completed however the way I include below was the best I could think of, however it seems really inefficient. What is the better way to do this? if($user['first_name']!==""&&$user['last_name']!==""&&$user['pemail']… >>> More
PHP If/Else - More efficent way to do this?

as seen on Stack Overflow - Search for 'Stack Overflow'
I have a if function that works out how much of a users profile is completed however the way I include below was the best I could think of, however it seems really inefficient. What is the better way to do this? if($user['first_name']!==""&&$user['last_name']!==""&&$user['pemail']… >>> More