FreeIPA— Provides LDAP and Kerberos setup for Linux. Note that Ubuntu 20.10 comes with native support for LDAP for authentication.
- Can be used with either NIS or LDAP for single sign-on.
- StackOverflow: Simple, centralized user management on a small LAN — NIS or LDAP? — "I don't think anybody uses NIS anymore — or at least, wants to". Use LDAP. Red Hat has a good installation guide. Volt has built-in support for LDAP.
- LDAP is more secure than NIS.
NIS is generally considered to be outdated and obsolete. It is not recommended for production deployments. Use something like LDAP instead.
Files that need to be updated
/etc/yp.conf— This is where
/etc/hosts.conf— Had an obsolete
orderkeyword which allows you to select in which order you process hostnames.
/etc/nsswitch.conf— Default file for domain name resolution.
/etc/network/interfaces— Static IP address and DNS nameserver.
+::::::at the bottom to sync all users. Individual users can be whitelisted or blacklisted using
+:::at the bottom to sync all groups.
+::::::at the bottom to sync user passwords.
dnsmasq— Listens on port 53 for requests.
# Start portmap sudo service portmap start # Start NIS client sudo service ypbind Start