Difference between revisions of "Cluster der kan alt/LDAP eller NIS"
From Teknologisk videncenter
(19 intermediate revisions by 5 users not shown) | |||
Line 1: | Line 1: | ||
− | + | =Installation af master server= | |
− | + | Tilføj følgende linje til '''sudo nano /etc/hosts.allow'''. | |
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
<source lang=cli> | <source lang=cli> | ||
− | portmap ypserv ypbind: 10. | + | portmap ypserv ypbind: 10.0.0.0/255.255.255.0 |
</source> | </source> | ||
− | + | Installer NIS. Du vil blive bedt om at indtaste domænenavnet. Domænenavnet er ikke DNS-domænenavn - men et unikt navn for klyngen af maskiner deler de samme oplysninger. | |
<source lang=cli> | <source lang=cli> | ||
− | apt-get install portmap nis | + | sudo apt-get install portmap nis |
</source> | </source> | ||
− | * | + | *Ret '''sudo nano /etc/default/nis''' (nano /etc/default/nis) og set NISSERVER linjen til |
− | * | + | <source lang=cli> |
+ | NISSERVER =master | ||
+ | </source> | ||
+ | *Ret '''sudo nano/etc/yp.conf''' og tilføj en linje med: | ||
<source lang=cli> | <source lang=cli> | ||
− | domain | + | domain dka.local server 127.0.0.1 |
+ | </source> | ||
+ | *Ret '''sudo nano /etc/ypserv.securenets''' fjern '''0.0.0.0''' linjen - insecure - og tilføj dit eget net(255.255.255.0 10.0.0.0). | ||
+ | *genstart så yellowpages servicen for at loade det nye configuration. | ||
+ | <source lang=cli> | ||
+ | sudo service ypserv restart | ||
</source> | </source> | ||
− | |||
==Adding a user== | ==Adding a user== | ||
− | + | Efter du har oprettet en ny bruger, '''adduser''' er det nødvendigt at genopbygge nis maps! | |
<source lang=cli> | <source lang=cli> | ||
root@head:~# <input>make -C /var/yp</input> | root@head:~# <input>make -C /var/yp</input> | ||
Line 50: | Line 50: | ||
echo -e "Creating keys" | echo -e "Creating keys" | ||
− | su $NAME -c "ssh-keygen | + | su $NAME -c "ssh-keygen" |
echo -e "Distributing keys" | echo -e "Distributing keys" | ||
− | su $NAME -c "cat /home/$NAME/.ssh/ | + | su $NAME -c "cat /home/$NAME/.ssh/id_rsa.pub >> /home/$NAME/.ssh/authorized_keys" |
echo -e "Rebuild NIS database" | echo -e "Rebuild NIS database" | ||
make -C /var/yp | make -C /var/yp | ||
</source> | </source> | ||
− | =Installation | + | =Installation på klienten= |
− | + | Installer software | |
<source lang=cli> | <source lang=cli> | ||
sudo apt-get install portmap nis | sudo apt-get install portmap nis | ||
</source> | </source> | ||
− | + | Kør disse kommandoer, hvor NIS_SERVER_IP = din nis server ip | |
<source lang=cli> | <source lang=cli> | ||
− | echo "portmap : <notice>NIS_SERVER_IP</notice> >> /etc/hosts.allow | + | echo "portmap : <notice>NIS_SERVER_IP"</notice> >> /etc/hosts.allow |
echo "+::::::" >> /etc/passwd | echo "+::::::" >> /etc/passwd | ||
echo "+:::" >> /etc/group | echo "+:::" >> /etc/group | ||
echo "+::::::::" >> /etc/shadow | echo "+::::::::" >> /etc/shadow | ||
− | echo "ypserver <notice>NIS_SERVER_IP</notice> >> /etc/yp.conf | + | echo "Domain = Cluster" >> /etc/idmapd.conf |
− | + | echo "ypserver <notice>NIS_SERVER_IP"</notice> >> /etc/yp.conf | |
+ | service ypbind restart | ||
+ | service idmapd restart | ||
</source> | </source> | ||
− | Test | + | Test med |
<source lang=cli> | <source lang=cli> | ||
yptest | yptest | ||
</source> | </source> | ||
{{source cli}} | {{source cli}} | ||
− | |||
− | |||
− | |||
− |
Latest revision as of 13:09, 21 October 2014
Contents
Installation af master server
Tilføj følgende linje til sudo nano /etc/hosts.allow.
portmap ypserv ypbind: 10.0.0.0/255.255.255.0
Installer NIS. Du vil blive bedt om at indtaste domænenavnet. Domænenavnet er ikke DNS-domænenavn - men et unikt navn for klyngen af maskiner deler de samme oplysninger.
sudo apt-get install portmap nis
- Ret sudo nano /etc/default/nis (nano /etc/default/nis) og set NISSERVER linjen til
NISSERVER =master
- Ret sudo nano/etc/yp.conf og tilføj en linje med:
domain dka.local server 127.0.0.1
- Ret sudo nano /etc/ypserv.securenets fjern 0.0.0.0 linjen - insecure - og tilføj dit eget net(255.255.255.0 10.0.0.0).
- genstart så yellowpages servicen for at loade det nye configuration.
sudo service ypserv restart
Adding a user
Efter du har oprettet en ny bruger, adduser er det nødvendigt at genopbygge nis maps!
root@head:~# <input>make -C /var/yp</input>
make: Går til katalog '/var/yp'
make[1]: Går til katalog '/var/yp/c1.local'
Updating passwd.byname...
Updating passwd.byuid...
Updating netid.byname...
Updating shadow.byname...
make[1]: Forlader katalog '/var/yp/c1.local'
make: Forlader katalog '/var/yp'
Script adding user in a Cluster
The following simple script:
- Add a user on the NIS server.
- Add a ssh key to the users /home library.
- In this cluster /home is distributed with NFS to all nodes. Logon to nodes without entering password
- Rebuilding the NIS database with the new user
#!/bin/bash
echo -e "Adding user to cluster"
echo -e "======================\n"
echo -en "User login name: "
read NAME
adduser $NAME
echo -e "Creating keys"
su $NAME -c "ssh-keygen"
echo -e "Distributing keys"
su $NAME -c "cat /home/$NAME/.ssh/id_rsa.pub >> /home/$NAME/.ssh/authorized_keys"
echo -e "Rebuild NIS database"
make -C /var/yp
Installation på klienten
Installer software
sudo apt-get install portmap nis
Kør disse kommandoer, hvor NIS_SERVER_IP = din nis server ip
echo "portmap : <notice>NIS_SERVER_IP"</notice> >> /etc/hosts.allow
echo "+::::::" >> /etc/passwd
echo "+:::" >> /etc/group
echo "+::::::::" >> /etc/shadow
echo "Domain = Cluster" >> /etc/idmapd.conf
echo "ypserver <notice>NIS_SERVER_IP"</notice> >> /etc/yp.conf
service ypbind restart
service idmapd restart
Test med
yptest