Introduction
As previously mentioned most current Unix releases implement the concept of a name service switch. In brief this mechanism can be used to tell a Unix platform what name services to use to obtain a specific directory entry and in what order. Because some of the platforms in use are somewhat dated not all implement the name service switch mechanism or an equivalent. Some platforms such as SCO Openserver 5.0.5 will insist on using NIS to resolve network protocol and service information if they are configured to use NIS for user and group lookups. As a consequence the protocols and services NIS maps in Active directory need to be populated with data, which they are not by default. Once these maps have been populated in NIS no further maintenance should be necessary.
Populating the Protocols NIS map
The “protocols” map in NIS allows for the association between symbolic protocol name (such as “tcp”) and a protocol number.
This map can be populated from one of the Domain controllers using the commands shown below.
nismap add -a domain.local -e "ip 0" protocols nismap add -a domain.local -e "icmp 1" protocols nismap add -a domain.local -e "igmp 2" protocols nismap add -a domain.local -e "ggp 3" protocols nismap add -a domain.local -e "tcp 6" protocols nismap add -a domain.local -e "egp 8" protocols nismap add -a domain.local -e "pup 12" protocols nismap add -a domain.local -e "udp 17" protocols nismap add -a domain.local -e "hmp 20" protocols nismap add -a domain.local -e "xns-idp 22" protocols nismap add -a domain.local -e "rdp 27" protocols
Populating the Services NIS map
The “services” map in NIS allows for the association between symbolic service name (such as “telnet”) and a port number. This map can be populated from one of the Domain controllers using the commands of the form shown below.
nismap add -a domain.local -e "tcpmux 1/tcp " services nismap add -a domain.local -e "echo 7/tcp " services nismap add -a domain.local -e "echo 7/udp " services nismap add -a domain.local -e "discard 9/tcp sink null " services
Below are the commands that we used to fully populate the map
nismap add -a domain.local -e "tcpmux 1/tcp " services nismap add -a domain.local -e "echo 7/tcp " services nismap add -a domain.local -e "echo 7/udp " services nismap add -a domain.local -e "discard 9/tcp sink null " services nismap add -a domain.local -e "discard 9/udp sink null " services nismap add -a domain.local -e "systat 11/tcp users " services nismap add -a domain.local -e "daytime 13/tcp " services nismap add -a domain.local -e "daytime 13/udp " services nismap add -a domain.local -e "qotd 17/tcp quote " services nismap add -a domain.local -e "chargen 19/tcp ttytst source " services nismap add -a domain.local -e "chargen 19/udp ttytst source " services nismap add -a domain.local -e "ftp-data 20/tcp " services nismap add -a domain.local -e "ftp 21/tcp " services nismap add -a domain.local -e "telnet 23/tcp " services nismap add -a domain.local -e "smtp 25/tcp " services nismap add -a domain.local -e "time 37/tcp timeserver " services nismap add -a domain.local -e "time 37/udp timeserver " services nismap add -a domain.local -e "rlp 39/udp resource " services nismap add -a domain.local -e "whois 43/tcp nicname " services nismap add -a domain.local -e "domain 53/tcp nameserver " services nismap add -a domain.local -e "domain 53/udp nameserver " services nismap add -a domain.local -e "bootps 67/udp " services nismap add -a domain.local -e "bootpc 68/udp " services nismap add -a domain.local -e "tftp 69/udp " services nismap add -a domain.local -e "rje 77/tcp netrjs " services nismap add -a domain.local -e "finger 79/tcp " services nismap add -a domain.local -e "http 80/tcp www " services nismap add -a domain.local -e "http 80/udp www " services nismap add -a domain.local -e "link 87/tcp ttylink " services nismap add -a domain.local -e "supdup 95/tcp " services nismap add -a domain.local -e "hostnames 101/tcp hostname " services nismap add -a domain.local -e "tsap 102/tcp iso_tsap iso-tsap " services nismap add -a domain.local -e "pop 109/tcp postoffice pop2 " services nismap add -a domain.local -e "pop3 110/tcp pop-3 " services nismap add -a domain.local -e "portmap 111/tcp sunrpc " services nismap add -a domain.local -e "portmap 111/udp sunrpc " services nismap add -a domain.local -e "auth 113/tcp authentication " services nismap add -a domain.local -e "sftp 115/tcp " services nismap add -a domain.local -e "uucp-path 117/tcp " services nismap add -a domain.local -e "nntp 119/tcp readnews untp " services nismap add -a domain.local -e "ntp 123/udp " services nismap add -a domain.local -e "netbios_ns 137/tcp " services nismap add -a domain.local -e "netbios_ns 137/udp " services nismap add -a domain.local -e "netbios_dgm 138/tcp " services nismap add -a domain.local -e "netbios_dgm 138/udp " services nismap add -a domain.local -e "netbios_ssn 139/tcp " services nismap add -a domain.local -e "netbios_ssn 139/udp " services nismap add -a domain.local -e "bftp 152/tcp " services nismap add -a domain.local -e "snmp 161/udp snmpd " services nismap add -a domain.local -e "snmp-trap 162/udp trapd " services nismap add -a domain.local -e "bgp 179/tcp " services nismap add -a domain.local -e "pvserver 382/tcp " services nismap add -a domain.local -e "pvalarm 383/tcp " services nismap add -a domain.local -e "biff 512/udp comsat " services nismap add -a domain.local -e "exec 512/tcp " services nismap add -a domain.local -e "login 513/tcp " services nismap add -a domain.local -e "who 513/udp whod " services nismap add -a domain.local -e "shell 514/tcp cmd " services nismap add -a domain.local -e "syslog 514/udp " services nismap add -a domain.local -e "printer 515/tcp spooler " services nismap add -a domain.local -e "talk 517/udp " services nismap add -a domain.local -e "ntalk 518/udp " services nismap add -a domain.local -e "route 520/udp router routed " services nismap add -a domain.local -e "efs 520/tcp " services nismap add -a domain.local -e "timed 525/udp timeserver " services nismap add -a domain.local -e "tempo 526/tcp newdate " services nismap add -a domain.local -e "courier 530/tcp rpc " services nismap add -a domain.local -e "conference 531/tcp chat " services nismap add -a domain.local -e "netnews 532/tcp readnews " services nismap add -a domain.local -e "netwall 533/udp " services nismap add -a domain.local -e "uucp 540/tcp uucpd " services nismap add -a domain.local -e "remotefs 556/tcp rfs_server rfs " services nismap add -a domain.local -e "ingreslock 1524/tcp " services nismap add -a domain.local -e "lansrm 570/udp " services nismap add -a domain.local -e "DAServer 987/tcp " services nismap add -a domain.local -e "instl_boots 1067/udp " services nismap add -a domain.local -e "instl_bootc 1068/udp " services nismap add -a domain.local -e "nfsd-keepalive 1110/udp " services nismap add -a domain.local -e "nfsd-status 1110/tcp " services nismap add -a domain.local -e "msql 1111/tcp " services nismap add -a domain.local -e "rlb 1260/tcp " services nismap add -a domain.local -e "clvm-cfg 1476/tcp " services nismap add -a domain.local -e "diagmond 1508/tcp " services nismap add -a domain.local -e "nft 1536/tcp " services nismap add -a domain.local -e "sna-cs 1553/tcp " services nismap add -a domain.local -e "sna-cs 1553/udp " services nismap add -a domain.local -e "ncpm-pm 1591/udp " services nismap add -a domain.local -e "ncpm-hip 1683/udp " services nismap add -a domain.local -e "cvmon 1686/udp " services nismap add -a domain.local -e "pmlockd 1889/tcp " services nismap add -a domain.local -e "pmlockd 1889/udp " services nismap add -a domain.local -e "nfsd 2049/udp " services nismap add -a domain.local -e "netdist 2106/tcp " services nismap add -a domain.local -e "rfa 4672/tcp " services nismap add -a domain.local -e "veesm 4789/tcp " services nismap add -a domain.local -e "hacl-hb 5300/tcp " services nismap add -a domain.local -e "hacl-gs 5301/tcp " services nismap add -a domain.local -e "hacl-cfg 5302/tcp " services nismap add -a domain.local -e "hacl-cfg 5302/udp " services nismap add -a domain.local -e "hacl-probe 5303/tcp " services nismap add -a domain.local -e "hacl-probe 5303/udp " services nismap add -a domain.local -e "hacl-local 5304/tcp " services nismap add -a domain.local -e "hacl-test 5305/tcp " services nismap add -a domain.local -e "hacl-dlm 5408/tcp " services nismap add -a domain.local -e "lanmgrx.osB 5696/tcp " services nismap add -a domain.local -e "r4-sna-cs 5707/tcp " services nismap add -a domain.local -e "SNAplus 5708/udp " services nismap add -a domain.local -e "r4-sna-ft 5709/tcp " services nismap add -a domain.local -e "hcserver 5710/tcp " services nismap add -a domain.local -e "grmd 5999/tcp " services nismap add -a domain.local -e "spc 6111/tcp " services nismap add -a domain.local -e "desmevt 6868/tcp " services nismap add -a domain.local -e "pdclientd 6874/tcp " services nismap add -a domain.local -e "pdeventd 6875/tcp " services nismap add -a domain.local -e "iasqlsvr 7489/tcp " services nismap add -a domain.local -e "recserv 7815/tcp " services nismap add -a domain.local -e "ftp-ftam 8868/tcp " services nismap add -a domain.local -e "mcsemon 9999/tcp " services nismap add -a domain.local -e "console 10000/tcp " services nismap add -a domain.local -e "actcp 31766/tcp " services nismap add -a domain.local -e "kerberos5 88/udp kdc " services nismap add -a domain.local -e "klogin 543/tcp " services nismap add -a domain.local -e "kshell 544/tcp krcmd " services nismap add -a domain.local -e "ekshell 545/tcp krcmd " services nismap add -a domain.local -e "kerberos 750/udp kdc " services nismap add -a domain.local -e "kerberos 750/tcp kdc " services nismap add -a domain.local -e "kerberos_master 751/tcp kadmin " services nismap add -a domain.local -e "krbupdate 760/tcp kreg " services nismap add -a domain.local -e "kpasswd 761/tcp kpwd " services nismap add -a domain.local -e "eklogin 2105/tcp " services nismap add -a domain.local -e "dtspc 6112/tcp " servicesNext (Client Configuration)
Back to menu