Perform this procedure for every user in the NIS domain.
Before You Begin
You must be logged in to the NIS master server to generate a new key for a user. You must be assigned the Name Service Security rights profile. For more information, see Using Your Assigned Administrative Rights in Securing Users and Processes in Oracle Solaris 11.4.
# newkey -u username
where username is the name of the user. The system prompts for a password. You can type a generic password. The private key is stored in an encrypted form by using the generic password.
This command allows users to re-encrypt their private keys with a password known only to the user.
In this example, the root role sets up the key.
# newkey -u jdoe Adding new key for [email protected] New Password: xxxxxxxx Retype password: xxxxxxxx Please wait for the database to get updated... Your new key has been successfully stored away. #
Then the user jdoe re-encrypts the key with a private password.
$ chkey -p Updating nis publickey database. Reencrypting key for [email protected] Please enter the Secure-RPC password for jdoe: xxxxxxxx Please enter the login password for jdoe: xxxxxxxx Sending key change request to centralexample...