System Administration Final Project - Micro Computer Center hchung, hwchiu.

Slides:



Advertisements
Similar presentations
Chapter 21 Security. Computer Center, CS, NCTU 2 Firewall (1)  Using ipfw 1.Add these options in kernel configuration file and recompile the kernel 2.Edit.
Advertisements

NIS Consistent configuration across the network. Why NIS? Primary reason is to provide same user configuration across the network Users go any machine.
Homework 5b: Samba. Computer Center, CS, NCTU 2 Network-based File Sharing (1)  NFS (UNIX-based) mountd is responsible for mount request nfsd and nfsiod.
PC Cluster Setup on Linux Fedora Core 5 High Performance Computing Lab Department of Computer Science and Information Engineering Tunghai University, Taichung,
NIS – Network Information System WeeSan Lee
Remote Disk Access with NFS
SERVER INTEGRATION. OVERVIEW In our project we are integrating Widows server to facilitate interaction between diverse operating systems and applications.
Linux System Administration LINUX SYSTEM ADMINISTRATION.
Linux+ Guide to Linux Certification, Third Edition
DHCP. DHCP (Dynamic Host Configuration Protocol) is a network service that enables clients to obtain network settings (IP Address, Subnet Mask, Default.
Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.
System Administration HW1-1 changlp. Computer Center, CS, NCTU 2 Requirements  Basic Install up-to-date –RELEASE of FreeBSD  8.2-R Add a user and a.
Lecture – Single Login NIS and Winbind. NIS Network Information Service (NIS) is the traditional directory service on UNIX platforms Still widely used.
Chapter 10 Networking and the Internet ITSC 1458.
System Administration HW2 - FTP, Samba, BT, ZFS jwbai.
Final Project – NFS and NIS jwbai. Computer Center, CS, NCTU 2 Goal master.passwd passwd group netgroup amd.conf userA, /nis/home/userA userB, /nis/home/userB.
System Administration HW1 huanghs. Computer Center, CS, NCTU 2 Requirements  Basic Install FreeBSD and upgrade to up-to-date –RELEASE Recompile your.
Setting up NIS and HTTP. Network Information Service Reading: 1. Linux NIS HOWTO: howto/HOWTOhttp://
ITI-481: Unix Administration Meeting 5. Today’s Agenda Network Information Service (NIS) The Cron Program Syslogd and Logging.
Network Security SSH Tunneling David Funk Matt McLaughlin Systems Administrators Computer Systems Support COE, University of Iowa.
Client – Server Application Can you create a client server application: The server will be running as a service: does not have a GUI The server will run.
Day 11 SAMBA NFS Logs Managing Users. SAMBA Implements the ability for a Linux machine to communicate with and act like a Windows file server. –Implements.
Centralized logins with NIS Eric Stolten Tim Meade Mark Sidnam.
System Administration HW3 Shell Script changlp. Computer Center, CS, NCTU 2 Requirements  User socket statistic (20%) Use one-line command to show per-user.
Automount NFS. Computer Center, CS, NCTU 2 Automatic mounting  Problems of /etc/fstab Maintenance of /etc/fstab in large network Crashed NFS server will.
CIS 192B – Lesson 3 Network Information Services.
System Administration Practice Homework 1-2 : X Window System lctseng.
Homework 03 - Hint DNS. Computer Center, CS, NCTU 2 Architecture ns.a.nctucs.net a.a /24 ns.b.nctucs.net b.b /24.
1/14 Char 18 Sharing System Files Content –NIS(The Network Information Service) –NIS+
Exercise 4 – NFS and NIS Announced Date: 2007/12/11 Due Date: 2007/12/25.
Homework 03 DNS. Computer Center, CS, NCTU 2 Architecture ns.a.nctucs.net a.a /24 ns.b.nctucs.net b.b /24 slave.
System Administration HW2 - File System Server ylin.
System Administration HW2 - File System Server. Computer Center, CS, NCTU 2 FTP  Install a FTP server for FreeBSD Pure-FTPd: /usr/ports/ftp/pure-ftpd.
Networking in Linux: a brief overview. TCP/IP  TCP/IP concepts we have seen are applicable to Linux (a version of UNIX, where TCP/IP started)  Some.
1 Network Information System (NIS). 2 Module – Network Information System (NIS) ♦ Overview This module focuses on configuring and managing Network Information.
User Management. Adding New Users Computer Center, CS, NCTU 3 ID  User ID, Group ID % id liuyh  uid=10047(liuyh) gid=200(dcs) groups=200(dcs),0(wheel),700(ta),800(security),888(wwwadm)
System Administration HW5 - Micro Computer Center yihshih / lctseng.
Basic Service & Settings xclin. Computer Center, CS, NCTU 2 If you want to transfer a file…
Linux Operations and Administration
System Administration Practice Homework6 - LDAP login + Puppet + Jail yench / lctseng / chchang2222.
System Administration HW3 - Shell Script chenyp. Computer Center, CS, NCTU 2 Requirements  File statistics (20%+10%) use one-line command to show files.
Small Business Server 2003 Linux Small Business Server versus Linux functionality.
Chapter 6 Adding New Users. Computer Center, CS, NCTU 2 Steps to add a new user 1.Edit the password and group files >vipw, pw 2.Set an initial password.
1 Security of NIS (YP) Gary Lam
Web Server/Services Web Server/Services huanghs. Computer Center, CS, NCTU 2 FAMP(FreeBSD+Apache+MySQL+PHP)  Apache 2.2 (35%) /usr/ports/www/apache22.
System Administration Practice Homework 1-3 : Chinese World lctseng.
Network administration HW3 吳宗翰 wutzh. Computer Center, CS, NCTU 2 Architecture.
System Administration HW3 - Shell Script hchung. Computer Center, CS, NCTU 2 Requirements  User connect time statistic script (10%) Use one-line command.
Homework 3 frank.
NIS Concepts and Configuration
System Administration Practice Homework 1-1 : FreeBSD Base
INSTALLING AND SETTING UP APACHE2 IN A LINUX ENVIRONMENT
Sharing System Files.
Final Project Announce: Due:
Final Project– NFS and NIS
Sharing System Files.
Sharing System Files.
System Administration HW5 - Micro Computer Center
Moldex3D License Admin – Trust Manager
System Administration HW5 - Mini Private Lab
Sharing System Files.
Sharing System Files.
System Administration HW3 - File System Server
Announced Date: 2006/12/20 Due Date: 2007/1/3
System Administration Practice Homework2 - File System Server
Network Information Service
System Administration HW2 - File System Server
Automounter Filesystem - autofs
System Administration Practice
Presentation transcript:

System Administration Final Project - Micro Computer Center hchung, hwchiu

Computer Center, CS, NCTU 2 Share these files: master.passwd hosts group netgroup ypservers amd.map sahome saduty sabsd NIS Master NIS Slave ……... sa-core NIS Client ypbind yppush

Computer Center, CS, NCTU 3 Export /net/data (ro) /net/home (maproot=nobody) sahome saduty sabsd NFS Master NFS Client ……... sa-core NFS Client nullfs Export /net/data (ro) /net/home (maproot=nobody) /net/admin Sudoers on NFS

Computer Center, CS, NCTU 4 sahome saduty sabsd ……... sa-core ssh Only sa-adm can connect to sa-core only from saduty ssh

Computer Center, CS, NCTU 5 Requirement (1/5) - Overview  Machines sahome: NFS Server, NIS Master Server, (NIS Client) saduty: NIS Slave Server, (NIS/NFS Client) sabsd: (NIS/NFS Client)  Groups sysadm: can access /net/data/sata nctucs: everyone  Netgroups sa-adm: admin users, can login sa-core sa-core: core machines (sahome and saduty) sa-bsd: all bsd machines

Computer Center, CS, NCTU 6 Requirement (2/5) - sahome  nullfs /net/home -> /vol/home /net/data -> /vol/data /net/admin -> /vol/admin  NIS Bind priority: sahome>saduty  login sa-adm only Only from saduty

Computer Center, CS, NCTU 7 Requirement (3/5) - saduty  NFS /net/home -> sahome:/vol/home (maproot=nobody) /net/data -> sahome:/vol/data (ro) /net/admin -> sahome:/vol/admin (ro)  NIS Bind priority: saduty>sahome  login sa-adm only

Computer Center, CS, NCTU 8 Requirement (4/5) - saduty  NFS /net/home -> sahome:/vol/home (maproot=nobody) /net/data -> sahome:/vol/data (ro)  NIS Bind priority: saduty>sahome  login All

Computer Center, CS, NCTU 9 Requirement (5/5)  1-3 members a team  All machines share /net/data/sudoers  Auto-start all services  Auto-mount all folders  User can change password on NIS Clients

Computer Center, CS, NCTU 10 Step 1 - Setup sahome as NIS Master Server  Edit /etc/rc.conf nis_server, nisdomainname, yppasswdd  Edit /var/yp/Makefile #NOPUSH = "True" HOSTS = $(YPDIR)/hosts GROUP = $(YPDIR)/group AMDHOST = $(YPDIR)/amd.map  Create /var/yp/hosts, /var/yp/group…etc Edit /var/yp/master.passwd & /var/yp/group to create your accounts Edit /var/yp/hosts to fit your environment  Initial and start services

Computer Center, CS, NCTU 11 Step 2 - Setup NIS Clients  Add NIS Servers’ IP to /etc/hosts  Edit /etc/master.passwd & /etc/group vipw  Edit /etc/nsswitch.conf hosts : files nis dns  Edit /etc/rc.conf nis_client, nisdomainname, ypbind  Testing tools ypcat ypwhich

Computer Center, CS, NCTU 12 Step 3 - Setup NFS environment  Nullfs (NFS Server) $ mount_nullfs /vol/home /net/home In /etc/fstab: /vol/home /net/home nullfs rw 2 2 Create and chmod /sbin/fsck_nullfs: #!/bin/sh exit  Edit /etc/exports (NFS Server)  Edit /etc/rc.conf amd (NFS Client) nfs_server, mountd (NFS Server)  Edit amd.map (NIS Server)

Computer Center, CS, NCTU 13 Step 4 - Setup saduty as a NIS Slave Server  Edit /etc/rc.conf nis_server, nisdomainname, ypxfrd Modity ypbind sequence (on every clients)  Edit /var/yp/ypservers (on cshome)  Initial and (re)start services

Computer Center, CS, NCTU 14 Step 5 - Finishing  Sudoers (/usr/local/etc/sudoers) #include /net/data/sudo/sudoers  sahome:/etc/hosts.allow  /net/data/sata sysadm only  Login permissions vipw (/etc/master.passwd) ALL : localhost [::1] : allow sshd : saduty : allow sshd : ALL : deny ALL : allow ALL : ALL : deny ALL : localhost [::1] : allow sshd : saduty : allow sshd : ALL : deny ALL : allow ALL : ALL : deny

Computer Center, CS, NCTU 15 Step 6 - Bonus  rup  backup (snapshot)  sahome as a log server  quota

Computer Center, CS, NCTU 16 Hand-in  Due & Demo TBD

Computer Center, CS, NCTU 17 Help  Go to bsd*.cs.nctu.edu.tw  IRC channel #nctuNASA on freenode  Newsgroup cs.course.sysadmin  BBS bs2.to board CS-SysAdmin   Goto CSCC to ask professional 3F!

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.