Installing the Centrify NIS server

Whether you want to use the Centrify Network Information Service for agentless authentication, managing network information, or publishing custom maps, you must install and configure adnisd on at least one computer in at least one zone before you can begin responding to NIS client requests.

In most cases, adnisd is installed as part of a custom installation of the authentication, privilege elevation, and audit and monitoring services or as a separate software package, independent of the installation of adclient. The naming convention for the standalone software package is:

centrifydc-nis-n.n.n-os-architecture

Keep in mind:

  • You must install adnisd on a computer where adclient is also installed.
  • The Active Directory domain and zone the local computer has joined defines the NIS domain, and therefore the information available to NIS clients.
  • You cannot use adnisd to serve NIS maps if your managed computer joined the domain using the --workstation option.

  • Using the --workstation option adds a computer to the single Auto Zone where user and group profiles are generated automatically. Computers in the Auto Zone cannot be used as NIS servers or NIS clients.
  • You can install adnisd using any installation program appropriate for the local operating environment, such as RPM, SMIT or YAST.
  • If you are upgrading from a previous release of Centrify Authentication Service, Privilege Elevation Service, and Audit & Monitoring Service and have an earlier version of adnisd, stop the existing adnisd service and use install.sh to remove the old packages before installing the new version of adclient and adnisd.

The following steps are only an example of how to install adnisd locally on a computer. The specific steps required depend on the local operating environment and the installation program you choose.

  1. As root on the managed computer, use adinfo to verify that adclient is installed, and that the local computer is joined to a domain and can connect to Active Directory:

    su -
    Password:

    adinfo

    Local host name: magnolia
    Joined to domain: ajax.org
    Joined as: magnolia.ajax.org
    Current DC: ginger.ajax.org
    Preferred site: Default-First-Site-Name
    Zone: ajax.org/Program Data/Centrify/Zones/default
    Last password set: 2006-12-28 14:47:57 PST
    CentrifyDC mode: connected
  2. Copy the package appropriate to the local computer’s operating environment, from the Centrify Authentication Service, Privilege Elevation Service, and Audit & Monitoring Service CD or a download directory, to a local directory.

    For example, if the operating environment is Solaris 9 SPARC:

    cp /tmp/centrifydc-nis-n.n.n-sol8-sparc-local.tgz .

  3. If the package is a compressed file, unzip and extract its contents. For example, on Solaris:

    gunzip -d centrifydc-nis-n.n.n-sol8-local.tgz
    tar -xf centrifydc-nis-n.n.n-sol8-sparc-local.tar

  4. Run the appropriate command for installing the package. For example, on Solaris:

    pkgadd –d CentrifyDC-nis -a admin