The netgroup table defines network wide groups used to check permissions for remote mounts, logins, and shells. The members of net groups used for remote mounts are workstations; for remote logins and shells, they are users.
Note: Users working on a client machine being served by a NIS+ server running in compatibility mode cannot run ypcat on the netgroup table. Doing so produces bad results, as if the table were empty, even if it has entries.
The netgroup table has six columns:
|Name||groupname||Name of the network group|
|Group||groupname||Another group that is part of this group|
|Host||hostname||Name of a host|
|User||username||User's login name|
|Domain||domainname||Name of a domain|
|Comment||Comment||Optional comment about the entry|
The input file consists of a group name and any number of members:
The member list can contain the names of other net groups or an ordered member list with three fields or both:
member-list::=groupname | (hostname, username, domainname)
The first field of the member list specifies the name of a workstation that belongs to the group. The second field specifies the name of a user that belongs to the group. The third field specifies the domain in which the member specification is valid.
A missing field indicates a wild card. For example, this net group includes all workstations and users in all domains:
A dash in a field is the opposite of a wild card; it indicates that no workstations or users belong to the group. The following example includes one workstation, host1, in the wiz.com. domain, but excludes all users:
The following example includes one user in the wiz.com. domain, but excludes all workstations: