Bug 1476945 - authconfig --enablenis should set nis in /etc/nsswitch.conf for all entries that can be served by nis
authconfig --enablenis should set nis in /etc/nsswitch.conf for all entries t...
Status: NEW
Product: Fedora
Classification: Fedora
Component: authconfig (Show other bugs)
Unspecified Linux
unspecified Severity low
: ---
: ---
Assigned To: Tomas Mraz
Fedora Extras Quality Assurance
Depends On:
  Show dependency treegraph
Reported: 2017-07-31 17:37 EDT by Edgar Hoch
Modified: 2017-07-31 17:37 EDT (History)
2 users (show)

See Also:
Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
Last Closed:
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description Edgar Hoch 2017-07-31 17:37:56 EDT
Description of problem:

authconfig modifiles entries in /etc/nsswitch.conf. But --enablenis modifies only a subset of entries that should be modified, because NIS can provide data for more maps than authconfig modifies.

1) NIS can provide data for

aliases bootparams ethers netmasks networks publickey rpc services

See, for example, in /var/yp/Makefile, for possible NIS maps.

These entries in /etc/nsswitch,conf should also get a "nis" entry if --enablenis is called, and it should be removed if -disablenis is called.

Currently only the following entries are modified by --enablenis and --disablenis:

passwd shadow group hosts netgroup automount

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:
1. authconfig --update --enablenis --nostart
2. Check entries in /etc/nsswitch.conf

Additional info:

I haven't checked option "--enableldap". It may be that is (and other options) also modifies only a subset of maps that the service can provide.

In the past I have modified /etc/nsswitch.conf by my own scripts, to contain "nis" entries for our nis maps. But it would be better if authconfig does the job right.

Note You need to log in before you can comment on or make changes to this bug.