This is a collection of useful tips & tricks for server for NIS which is a part of Identity management for Unix (IDMU) - a service role for Active Directory domain controllers.
The Server for NIS administration tools are quite crappy, unfortunately and for example only allows NIS domain/map creation - once created, you can easily not delete NIS maps or even whole domains. This howto tries to fill the gap - to do these tasks you need ADSI snap-in to be able to manage AD (normally hidden) objects. Server for NIS keeps its configuration here:
CN=ypServ30,CN=RpcServices,CN=System,(your AD root)
How do delete the NIS map?
Locate the map you wish in the container above and delete the corresponding msSFU30DomainInfo object. For example if I want to delete the NIS map group from the test NIS domain, I need to delete CN=group,CN=test object. Of course the itself map needs to be also deleted in AD (usually see the defaultMigrationContainer30 in the AD root).
How do delete the whole NIS domain?
Follow the procedure above to delete all maps from the NIS domain you want to delete. When finished, the NIS domain can be deleted for example this way - delete object CN=ypservers,CN=test. This will delete NIS domain test so that the Server for NIS no longer responds to requests for this domain.
Note that all these tasks require the service "Server for NIS" to be restarted.
No comments:
Post a Comment