[comp.sys.sun] Help with user of netgroup and Yellow Pages

CSZDUFFY@csvax.qut.oz (02/01/90)

Questions related to the use of netgroups in Yellow Pages.
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

Following is a list of the /etc/netgroup file on the YP server:

everyone     (,,)
fitqut       (,,fit.qut.edu.au)
net_program  (,sidney,fit.qut.edu.au) \
             (,tony,fit.qut.edu.au)
net_source   (,sidney,fit.qut.edu.au) \
             (,tony,fit.qut.edu.au) \
             (,james,fit.qut.edu.au) \
             (,tonyo,fit.qut.edu.au)
net_dbases   (,sidney,fit.qut.edu.au) \
             (,mikew,fit.qut.edu.au)
net_special  (,sidney,fit.qut.edu.au) \
             (,mikew,fit.qut.edu.au) \
             (,assdb,fit.qut.edu.au) \
             (,nassdb,fit.qut.edu.au) \
             (,operator,fit.qut.edu.au)
net_tech     (,tech,fit.qut.edu.au)
             (,greglow,fit.qut.edu.au) \
             (,debra,fit.qut.edu.au) \
             (,emlyn,fit.qut.edu.au) \
             (,hector,fit.qut.edu.au) \
             (,mikew,fit.qut.edu.au) \
             (,jaime,fit.qut.edu.au) \
             (,pata,fit.qut.edu.au) \
             (,marshall,fit.qut.edu.au) \
             (,jan,fit.qut.edu.au) \
             (,james,fit.qut.edu.au) \
             (,colleen,fit.qut.edu.au)

What we are trying to do here at Faculty of Information Technology
Queensland University of Technology, is to setup all the staff and
students under one YP domain.  Then via the use of netgroups on the
respective clients allowing or denying access to particular groups of
users.

According to the documentation that I have been able to find the following
should happen:

1) If +@fitqut: is placed in the clients passwd file, then all users in
   Yellow Pages can logon.  This works!

2) If +@net_program: is placed in the clients passwd file, then only the
   local users can logon to the client.  This as I understand is NOT what is
   supposed to happen.  Can someone tell me what is going wrong?

3) Once the above is sorted out, can the following then be acheived.  For
   example a client is to allow programmers, source, and fit people and
   disallow other: I assume the following could be added to the client passwd
   file: +@net_program: +@net_source: +@net_fit:

Thank you for any help.
Sidney

Sidney James DUFFY                  | Unix the Final Frontier
Technical Services Section          |
Faculty of Information Technology   | ACSnet: sidney@earth.oz
Queensland University of Technology | JANET:  EARTH.OZ!sidney@ukc
GPO Box 2434  Brisbane  QLD  4001   | Uunet:  ...!uunet!munnari!earth.oz!sidney
Fax +[061][07]229 1510              | ARPA:   sidney%earth.oz@uunet.uu.net