Actually, we do just that. What we did: 1. backup your nsswitch.conf 2. configure ldap "ldapclient ....." 3. restore your nsswitch.conf 4. configure nis (the ldapclient command erases this): "ypinit -c ...." 5. restore your nsswitch.conf 6. make sure svc:/network/ldap/client:default and svc:/network/nis/client:default are enabled (svcs -a, svcadm) 7. edit your nsswitch.conf and specify the order you would like for these services:
passwd: files nis ldap group: files nis ldap Josh On Wed, Mar 19, 2008 at 8:10 AM, Edwin Goei <[EMAIL PROTECTED]> wrote: > Is it possible to use two networked databases at the same time in > nsswitch.conf? I've got a client machine using an existing NIS database > in nsswitch. I'd like to add additional entries to the passwd database > so that I can provide sshd access to a mercurial repository for a large > number of accounts. These entries would be provided by an ldap server on > a different host. Essentially, I would like to modify my existing > NIS-based nsswitch with "passwd: files nis ldap". I was able to get ldap > to work via ldapclient but when I turn on the NIS client back on, I get > this error in the log: > > [ Mar 19 07:44:22 Enabled. ] > [ Mar 19 07:44:22 Executing start method ("/lib/svc/method/yp"). ] > /lib/svc/method/yp: /var/yp/binding/tools.sfbay.sun.com is not a directory > [ Mar 19 07:44:22 Method "start" exited with status 96. ] > > Any ideas? > > It doesn't seem to be possible to use two LDAP backends, but it may be > possible to have an LDAP server both provide LDAP and NIS entries. Has > anyone gotten something like this to work? > > -Edwin > _______________________________________________ > sysadmin-discuss mailing list > [EMAIL PROTECTED] > http://mail.opensolaris.org/mailman/listinfo/sysadmin-discuss >
_______________________________________________ opensolaris-discuss mailing list opensolaris-discuss@opensolaris.org