Hello all, Several days ago, I got some requests as following: +--------+ +--------+ +--------+ | server | | server | | server | | A |--LAN connection--| 1 |--LAN.... | n | +--------+ +--------+ +--------+ HP-UX 11.0 Linux Solaris user1, user2.....usern requirement: 1. user group A(user1, user2, user5) have access to server1, server2 and server10. user group B(user2, user6,...usern) have access to server3, server5 .. user group C..... 2. All the users home directories should reside on one central server A. Whichever server they are using, they should have their own home directory mounted. 3. All the user information should be kept on central server. 4. All the connections should be secure. What I did is using NIS as the main name service. - I configured "server A(HP-UX 11.0)" as the NIS master server & NFS server and put all users' login information&home data on it. - All users' home directories are put into indirect maps for auto mount. - All users are assigned to different netgroups for server access control - SSH(version1.5-1.2.30) is used for security connection My question is: If the netgroup is used for access control, the "passwd" entry in nsswitch.conf has to be changed to "compat" mode. However in compat mode, SSH will not work. The error message: %ssh -l user1 server1 user1@server1's password: Permission denied. % Is there anything I miss? Thanks for any suggestions! carl - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
