Comment # 15 on bug 1129587 from Ludwig Nussel

so the problem is in /usr/lib/systemd/system/NetworkManager.service. It has
CapabilityBoundingSet without CAP_SYS_ADMIN which is required for
setdomainname. Of course it could be added but it's rather ugly to have such
privileges when not needed in most cases. Setting the hostname works though
hostnamed btw, no CAP_SYS_ADMIN needed for that.
So short of quickly hacking setdomainname into systemd anymore and since ypbind
is a rather legacy service anyways the simplest fix would be indeed to add the
ExecStartPre line to ypbind.service. There's already
/usr/lib/ypbind/ypbind-systemd-pre anyways.