Presentation is loading. Please wait.

Presentation is loading. Please wait.

System Administration Final Project - Micro Computer Center hchung, hwchiu.

Published byBaldric Strickland Modified over 9 years ago

Similar presentations

Presentation on theme: "System Administration Final Project - Micro Computer Center hchung, hwchiu."— Presentation transcript:

1 System Administration Final Project - Micro Computer Center hchung, hwchiu

2 Computer Center, CS, NCTU 2 Share these files: master.passwd hosts group netgroup ypservers amd.map sahome saduty sabsd NIS Master NIS Slave ……... sa-core NIS Client ypbind yppush

3 Computer Center, CS, NCTU 3 Export /net/data (ro) /net/home (maproot=nobody) sahome saduty sabsd NFS Master NFS Client ……... sa-core NFS Client nullfs Export /net/data (ro) /net/home (maproot=nobody) /net/admin Sudoers on NFS

4 Computer Center, CS, NCTU 4 sahome saduty sabsd ……... sa-core ssh Only sa-adm can connect to sa-core only from saduty ssh

5 Computer Center, CS, NCTU 5 Requirement (1/5) - Overview  Machines sahome: NFS Server, NIS Master Server, (NIS Client) saduty: NIS Slave Server, (NIS/NFS Client) sabsd: (NIS/NFS Client)  Groups sysadm: can access /net/data/sata nctucs: everyone  Netgroups sa-adm: admin users, can login sa-core sa-core: core machines (sahome and saduty) sa-bsd: all bsd machines

6 Computer Center, CS, NCTU 6 Requirement (2/5) - sahome  nullfs /net/home -> /vol/home /net/data -> /vol/data /net/admin -> /vol/admin  NIS Bind priority: sahome>saduty  login sa-adm only Only from saduty

7 Computer Center, CS, NCTU 7 Requirement (3/5) - saduty  NFS /net/home -> sahome:/vol/home (maproot=nobody) /net/data -> sahome:/vol/data (ro) /net/admin -> sahome:/vol/admin (ro)  NIS Bind priority: saduty>sahome  login sa-adm only

8 Computer Center, CS, NCTU 8 Requirement (4/5) - saduty  NFS /net/home -> sahome:/vol/home (maproot=nobody) /net/data -> sahome:/vol/data (ro)  NIS Bind priority: saduty>sahome  login All

9 Computer Center, CS, NCTU 9 Requirement (5/5)  1-3 members a team  All machines share /net/data/sudoers  Auto-start all services  Auto-mount all folders  User can change password on NIS Clients

10 Computer Center, CS, NCTU 10 Step 1 - Setup sahome as NIS Master Server  Edit /etc/rc.conf nis_server, nisdomainname, yppasswdd  Edit /var/yp/Makefile #NOPUSH = "True" HOSTS = $(YPDIR)/hosts GROUP = $(YPDIR)/group AMDHOST = $(YPDIR)/amd.map  Create /var/yp/hosts, /var/yp/group…etc Edit /var/yp/master.passwd & /var/yp/group to create your accounts Edit /var/yp/hosts to fit your environment  Initial and start services

11 Computer Center, CS, NCTU 11 Step 2 - Setup NIS Clients  Add NIS Servers’ IP to /etc/hosts  Edit /etc/master.passwd & /etc/group vipw  Edit /etc/nsswitch.conf hosts : files nis dns  Edit /etc/rc.conf nis_client, nisdomainname, ypbind  Testing tools ypcat ypwhich

12 Computer Center, CS, NCTU 12 Step 3 - Setup NFS environment  Nullfs (NFS Server) $ mount_nullfs /vol/home /net/home In /etc/fstab: /vol/home /net/home nullfs rw 2 2 Create and chmod /sbin/fsck_nullfs: #!/bin/sh exit  Edit /etc/exports (NFS Server)  Edit /etc/rc.conf amd (NFS Client) nfs_server, mountd (NFS Server)  Edit amd.map (NIS Server)

13 Computer Center, CS, NCTU 13 Step 4 - Setup saduty as a NIS Slave Server  Edit /etc/rc.conf nis_server, nisdomainname, ypxfrd Modity ypbind sequence (on every clients)  Edit /var/yp/ypservers (on cshome)  Initial and (re)start services

14 Computer Center, CS, NCTU 14 Step 5 - Finishing  Sudoers (/usr/local/etc/sudoers) #include /net/data/sudo/sudoers  sahome:/etc/hosts.allow  /net/data/sata sysadm only  Login permissions vipw (/etc/master.passwd) ALL : localhost 127.0.0.1 [::1] : allow sshd : saduty : allow sshd : ALL : deny ALL : @sa-bsd : allow ALL : ALL : deny ALL : localhost 127.0.0.1 [::1] : allow sshd : saduty : allow sshd : ALL : deny ALL : @sa-bsd : allow ALL : ALL : deny

15 Computer Center, CS, NCTU 15 Step 6 - Bonus  rup  backup (snapshot)  sahome as a log server  quota

16 Computer Center, CS, NCTU 16 Hand-in  Due & Demo TBD

17 Computer Center, CS, NCTU 17 Help  Go to bsd*.cs.nctu.edu.tw  IRC channel #nctuNASA on freenode  Newsgroup cs.course.sysadmin  BBS bs2.to board CS-SysAdmin  Email ta@nasa.cs.nctu.edu.tw  Goto CSCC to ask professional 3F!

Download ppt "System Administration Final Project - Micro Computer Center hchung, hwchiu."

Similar presentations

Chapter 21 Security. Computer Center, CS, NCTU 2 Firewall (1)  Using ipfw 1.Add these options in kernel configuration file and recompile the kernel 2.Edit.

Chapter 21 Security. Computer Center, CS, NCTU 2 Firewall (1)  Using ipfw 1.Add these options in kernel configuration file and recompile the kernel 2.Edit.
NIS Consistent configuration across the network. Why NIS? Primary reason is to provide same user configuration across the network Users go any machine.

NIS Consistent configuration across the network. Why NIS? Primary reason is to provide same user configuration across the network Users go any machine.
Homework 5b: Samba. Computer Center, CS, NCTU 2 Network-based File Sharing (1)  NFS (UNIX-based) mountd is responsible for mount request nfsd and nfsiod.

Homework 5b: Samba. Computer Center, CS, NCTU 2 Network-based File Sharing (1)  NFS (UNIX-based) mountd is responsible for mount request nfsd and nfsiod.
PC Cluster Setup on Linux Fedora Core 5 High Performance Computing Lab Department of Computer Science and Information Engineering Tunghai University, Taichung,

PC Cluster Setup on Linux Fedora Core 5 High Performance Computing Lab Department of Computer Science and Information Engineering Tunghai University, Taichung,
NIS – Network Information System WeeSan Lee

NIS – Network Information System WeeSan Lee
Remote Disk Access with NFS

Remote Disk Access with NFS
SERVER INTEGRATION. OVERVIEW In our project we are integrating Widows server to facilitate interaction between diverse operating systems and applications.

SERVER INTEGRATION. OVERVIEW In our project we are integrating Widows server to facilitate interaction between diverse operating systems and applications.
Linux System Administration LINUX SYSTEM ADMINISTRATION.

Linux System Administration LINUX SYSTEM ADMINISTRATION.
Linux+ Guide to Linux Certification, Third Edition

Linux+ Guide to Linux Certification, Third Edition
DHCP. DHCP (Dynamic Host Configuration Protocol) is a network service that enables clients to obtain network settings (IP Address, Subnet Mask, Default.

DHCP. DHCP (Dynamic Host Configuration Protocol) is a network service that enables clients to obtain network settings (IP Address, Subnet Mask, Default.
Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.

Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.
System Administration HW1-1 changlp. Computer Center, CS, NCTU 2 Requirements  Basic Install up-to-date –RELEASE of FreeBSD  8.2-R Add a user and a.

System Administration HW1-1 changlp. Computer Center, CS, NCTU 2 Requirements  Basic Install up-to-date –RELEASE of FreeBSD  8.2-R Add a user and a.
Lecture – Single Login NIS and Winbind. NIS Network Information Service (NIS) is the traditional directory service on UNIX platforms Still widely used.

Lecture – Single Login NIS and Winbind. NIS Network Information Service (NIS) is the traditional directory service on UNIX platforms Still widely used.
Chapter 10 Networking and the Internet ITSC 1458.

Chapter 10 Networking and the Internet ITSC 1458.
System Administration HW2 - FTP, Samba, BT, ZFS jwbai.

System Administration HW2 - FTP, Samba, BT, ZFS jwbai.
Final Project – NFS and NIS jwbai. Computer Center, CS, NCTU 2 Goal master.passwd passwd group netgroup amd.conf userA, /nis/home/userA userB, /nis/home/userB.

Final Project – NFS and NIS jwbai. Computer Center, CS, NCTU 2 Goal master.passwd passwd group netgroup amd.conf userA, /nis/home/userA userB, /nis/home/userB.
System Administration HW1 huanghs. Computer Center, CS, NCTU 2 Requirements  Basic Install FreeBSD and upgrade to up-to-date –RELEASE Recompile your.

System Administration HW1 huanghs. Computer Center, CS, NCTU 2 Requirements  Basic Install FreeBSD and upgrade to up-to-date –RELEASE Recompile your.
Setting up NIS and HTTP. Network Information Service Reading: 1. Linux NIS HOWTO: howto/HOWTOhttp://www.linux-nis.org/nis-

Setting up NIS and HTTP. Network Information Service Reading: 1. Linux NIS HOWTO: howto/HOWTOhttp://
ITI-481: Unix Administration Meeting 5. Today’s Agenda Network Information Service (NIS) The Cron Program Syslogd and Logging.

ITI-481: Unix Administration Meeting 5. Today’s Agenda Network Information Service (NIS) The Cron Program Syslogd and Logging.
Network Security SSH Tunneling David Funk Matt McLaughlin Systems Administrators Computer Systems Support COE, University of Iowa.

Network Security SSH Tunneling David Funk Matt McLaughlin Systems Administrators Computer Systems Support COE, University of Iowa.

Similar presentations

Ads by Google