这篇文章给大家分享的是有关Centos8如何搭建配置nis域服务的内容。小编觉得挺实用的,因此分享给大家做个参考,一起跟随小编过来看看吧。
NIS 简介
NIS,英文的全称是network information service,也叫yellow pages。在Linux中,NIS是一个基于RPC的client/server系统,需要使用 RPC 服务。
RPC即Remote Procedure Call Protocol(远程过程调用协议),RPCBIND用于取代旧版本中的portmap组件。简单说,RPCBIND就是为了将不同服务与对应的端口进行绑定,以便支持机器间的相互操作。
网络环境:
| 节点 | 主机 |
| node1(nis主服务器) | 192.168.10.222 |
| node2(nis客户机) | 192.168.10.223 |
1.环境准备(两个节点都要)
关闭防火墙
systemctl< /span > stop< /span > firewalld< /span >
setenforce< /span > 0< /span >
添加主机名解析
vim< /span > /etc/hosts < /span >
192.168< /span >.10< /span >.222< /span > node1< /span >
192.168< /span >.10< /span >.223< /span > node2< /span >
2.nis主服务器配置
下载软件包
yum< /span > -y install rpcbind ypserv ypbind yp-tools
添加nis域名
[root@localhost ~] # nisdomainname skills.com
vim /etc/sysconfig/network
NISDOMAIN skills.com
开机自动挂载nis域名
[root@localhost ~< /span >] # vim /etc/rc.d/rc.local
touch /var< /span >/lock< /span > /subsys/local
/bin/nisdomainname skills.com
[root@localhost ~< /span >] # chmod 777 /etc/rc.d/rc.local
修改主配置文件限制权限
vim< /span > /etc/ypserv .conf< /span >
192.168< /span >.10< /span >.0< /span > /24 :*:*:none< /span > // 给与该网段访问权限< /span >
192.168< /span >.10< /span >.222< /span >:*:*:none< /span > // 给与该本机访问权限< /span >
:*:*:deny< /span > // 拒绝其他服务器< /span >
重启服务
systemctl restart yppasswdd rpcbind ypserv
systemctl enable < /span > yppasswdd rpcbind ypserv
建立资料库
[root@localhost ~] # /usr/lib64/yp/ypinit -m
At this point, we have to construct a list of the hosts which will run NIS
servers. localhost is in the list of NIS server hosts. Please continue to add
the names for the other hosts, one per line. When you are done with< /span > the
list< /span >, type < /span > a <control D>.
next< /span > host to< /span > add< /span >: localhost
next< /span > host to< /span > add< /span >:
The current< /span > list< /span > of< /span > NIS servers looks like< /span > this:
localhost
Is< /span > this correct? [y /n : y] y
We need a few minutes< /span > to< /span > build< /span > the databases...
Building /var< /span > /yp/skills .com /ypservers ...
Running /var< /span > /yp/Makefile ...
gmake[1< /span >]: Entering directory< /span > '/var/yp/skills.com' < /span >
Updating passwd .byname...
Updating passwd .byuid...
Updating group.byname...
Updating group.bygid...
Updating hosts.byname...
Updating hosts.byaddr...
Updating rpc.byname...
Updating rpc.bynumber...
Updating services.byname...
Updating services.byservicename...
Updating netid.byname...
Updating protocols.bynumber...
Updating protocols.byname...
Updating mail.aliases...
gmake[1< /span >]: Leaving directory< /span > '/var/yp/skills.com' < /span >
localhost has been set < /span > up as< /span > a NIS master< /span > server.
Now< /span > you can run ypinit -s localhost on< /span > all< /span > slave< /span > server.
[root@localhost ~] #
新建nis账户
useradd nis1 -p123
useradd nis2 -p123
当主机发生了更改就 cd 到/var< /span > /yp make
[root@localhost ~< /span >] # cd /var/yp/
[root@localhost yp< /span >] # make
gmake[1< /span >]: Entering directory '/var/yp/skills.com' < /span >
Updating passwd .byname...
Updating passwd .byuid...
Updating group< /span >.byname...
Updating group< /span >.bygid...
Updating netid.byname...
gmake[1< /span >]: Leaving directory '/var/yp/skills.com' < /span >
[root@localhost yp< /span >] #
重启服务
systemctl restart yppasswdd rpcbind ypserv
systemctl enable < /span > yppasswdd rpcbind ypserv
3.nis客户端设置
下载软件包
yum< /span > -y install ypbind rpcbind yp-tools
添加nis域名
[root@localhost ~] # nisdomainname skills.com
vim /etc/sysconfig/network
NISDOMAIN skills.com
开机自动挂载nis域名
[root@localhost ~< /span >] # vim /etc/rc.d/rc.local
touch /var< /span >/lock< /span > /subsys/local
/bin/nisdomainname skills.com
[root@localhost ~< /span >] # chmod 777 /etc/rc.d/rc.local
编辑yp.conf文件,设置主服务。
domain< /span > skills< /span >.com< /span > server< /span > 192.168< /span >.10< /span >.222< /span >
重启服务
systemctl< /span > restart ypbind rpcbind
yptest查看是否加入成功
[root@localhost ~] # yptest
Test 1< /span >: domainname
Configured domainname is "skills.com" < /span >
Test 2< /span >: ypbind
Use Protocol V1:< /span > Used NIS server:< /span > 192.168< /span >.10.222< /span >
Use Protocol V2:< /span > Used NIS server:< /span > 192.168< /span >.10.222< /span >
Use Protocol V3:< /span >
ypbind_nconf:< /span >
nc_netid:< /span > udp
nc_semantics:< /span > 1< /span >
nc_flag:< /span > 1< /span >
nc_protofmly:< /span > 'inet' < /span >
nc_proto:< /span > 'udp' < /span >
nc_device:< /span > '-' < /span >
nc_nlookups:< /span > 0< /span >
ypbind_svcaddr:< /span > 192.168< /span >.10.222< /span >:< /span >740< /span >
ypbind_servername:< /span > 192.168< /span >.10.222< /span >
ypbind_hi_vers:< /span > 2< /span >
ypbind_lo_vers:< /span > 2< /span >
Test 3< /span >: yp_match
WARNING:< /span > No such key in < /span > map (Map passwd .byname, key nobody)
Test 4< /span >: yp_first
nis1 nis1:< /span >123< /span >:< /span >1000< /span >:< /span >1000< /span >:< /span >: /home/nis1 < /span >: /bin/bash < /span >
Test 5< /span >: yp_next
nis2 nis2:< /span >123< /span >:< /span >1001< /span >:< /span >1001< /span >:< /span >: /home/nis2 < /span >: /bin/bash < /span >
Test 6< /span >: yp_master
localhost
Test 7< /span >: yp_order
1639387530< /span >
Test 8< /span >: yp_maplist
netid.byname
group.bygid
group.byname
passwd .byuid
passwd .byname
mail.aliases
protocols.byname
protocols.bynumber
services.byservicename
services.byname
rpc.bynumber
rpc.byname
hosts.byaddr
hosts.byname
ypservers
Test 9< /span >: yp_all
nis1 nis1:< /span >123< /span >:< /span >1000< /span >:< /span >1000< /span >:< /span >: /home/nis1 < /span >: /bin/bash < /span >
nis2 nis2:< /span >123< /span >:< /span >1001< /span >:< /span >1001< /span >:< /span >: /home/nis2 < /span >: /bin/bash < /span >
1< /span > tests failed
[root@localhost ~] #
配置域用户登陆
[root@localhost ~] # authselect select nis --force
Backup stored at /var/lib/authselect/backups/2021-12-13-09-34-52 .8NFKZD
Profile "nis" was selected.
The following nsswitch maps are overwritten by the profile:
- < /span >aliases
- < /span >automount
- < /span >ethers
- < /span >group
- < /span >hosts
- < /span >initgroups
- < /span >netgroup
- < /span >networks
- < /span > passwd
- < /span >protocols
- < /span >publickey
- < /span >rpc
- < /span >services
- < /span >shadow
Make sure that NIS service is configured and enabled. See NIS documentation for more information.
[root@localhost ~] #
主服务器配置nfs,将home目录共享。
[root@localhost yp] # vim /etx/exports
/home/ *(rw, sync )
[root@localhost yp] # exportfs -rv
exporting *: /home < /span >
客户端挂载主服务器home目录
systemctl< /span > restart< /span > nfs-server< /span >
[root@localhost< /span > ~] # mount 192.168.10.222:/home/ /home/
[root@localhost< /span > ~] # df
Filesystem< /span > 1K-blocks< /span > Used< /span > Available< /span > Use%< /span > Mounted< /span > on< /span >
devtmpfs< /span > 379852< /span > 0< /span > 379852< /span > 0< /span >%< /span > /dev < /span >
tmpfs< /span > 399816< /span > 0< /span > 399816< /span > 0< /span >%< /span > /dev/shm < /span >
tmpfs< /span > 399816< /span > 5688< /span > 394128< /span > 2< /span >%< /span > /run < /span >
tmpfs< /span > 399816< /span > 0< /span > 399816< /span > 0< /span >%< /span > /sys/fs/cgroup < /span >
/dev/mapper/cl-root < /span > 17811456< /span > 1615988< /span > 16195468< /span > 10< /span >%< /span > /< /span >
/dev/sda1 < /span > 1038336< /span > 196688< /span > 841648< /span > 19< /span >%< /span > /boot < /span >
/dev/sr0 < /span > 9046654< /span > 9046654< /span > 0< /span > 100< /span >%< /span > /media < /span >
tmpfs< /span > 79960< /span > 0< /span > 79960< /span > 0< /span >%< /span > /run/user/0 < /span >
192.168< /span >.10< /span >.222< /span >: /home < /span > 17811456< /span > 1644672< /span > 16166784< /span > 10< /span >%< /span > /home < /span >
[root@localhost< /span > ~] #
添加开机自动挂载主服务home目录。
vim< /span > /etc/fstab < /span >
192.168< /span >.10< /span >.222< /span >: /home < /span > /home < /span > nfs< /span > defaults< /span > 0< /span > 0< /span >
[root@localhost< /span > ~] # mount -a
[root@localhost< /span > ~] # df
Filesystem< /span > 1K-blocks< /span > Used< /span > Available< /span > Use%< /span > Mounted< /span > on< /span >
devtmpfs< /span > 379852< /span > 0< /span > 379852< /span > 0< /span >%< /span > /dev < /span >
tmpfs< /span > 399816< /span > 0< /span > 399816< /span > 0< /span >%< /span > /dev/shm < /span >
tmpfs< /span > 399816< /span > 5688< /span > 394128< /span > 2< /span >%< /span > /run < /span >
tmpfs< /span > 399816< /span > 0< /span > 399816< /span > 0< /span >%< /span > /sys/fs/cgroup < /span >
/dev/mapper/cl-root < /span > 17811456< /span > 1613680< /span > 16197776< /span > 10< /span >%< /span > /< /span >
/dev/sda1 < /span > 1038336< /span > 196688< /span > 841648< /span > 19< /span >%< /span > /boot < /span >
/dev/sr0 < /span > 9046654< /span > 9046654< /span > 0< /span > 100< /span >%< /span > /media < /span >
192.168< /span >.10< /span >.222< /span >: /home < /span > 17811456< /span > 1644544< /span > 16166912< /span > 10< /span >%< /span > /home < /span >
tmpfs< /span > 79960< /span > 0< /span > 79960< /span > 0< /span >%< /span > /run/user/0 < /span >
[root@localhost< /span > ~] #
到这nis配置完成。