- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: synching unix and windows passwords
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-08-2005 11:32 PM
тАО03-08-2005 11:32 PM
The problem is that we have windows frontend servers that use the unix backend servers and the user userid's and password need to be the same.
Is there an easy way for the unix password to be automatically changed when the windows password is changed?
I dont know if something like LDAP can do this.
Cheers
George
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-09-2005 12:02 AM
тАО03-09-2005 12:02 AM
Solutionhttp://docs.hp.com/en/J4269-90018/index.html
http://docs.hp.com/en/J4269-90012/index.html
http://docs.hp.com/en/J4269-90037/ch02s05.html
live free or die
harry d brown jr
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-09-2005 12:07 AM
тАО03-09-2005 12:07 AM
Re: synching unix and windows passwords
I'm currently going through the same situation. SOX, what a pain, huh? The research I have done so far, indicates an integration between Active Directory (LDAP) and Unix/Linux is the best solution. This way, your Unix/Linux logins are authenticated against your AD environments. Password aging, disabling accounts, and synchronization is handled by AD. I haven't figured out all the nuts and bolts and "how-to's" yet, but this is the direction we are taking.
Dwyane
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-09-2005 12:36 AM
тАО03-09-2005 12:36 AM
Re: synching unix and windows passwords
At least it means i do have some fresh build servers that i will be able to use to test this first.
Is anyone else having to do this because of SOX.
I think those two senators need a good slap ;)
Cheers
George
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-09-2005 12:41 AM
тАО03-09-2005 12:41 AM
Re: synching unix and windows passwords
Either way authentication of non system users will be handled by the rules of the centralized login server. This should satisfy the SOX requirements.
We have played with this but maintain two login systems, with HP-UX simply having the same rules as Windows using the /etc/default/security file.
I'm attaching mine. In our case the users make sure their passwords are the same on all systems, if they wish things to be that way. We are doing centralized login later this year.
SEP
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-09-2005 12:53 AM
тАО03-09-2005 12:53 AM
Re: synching unix and windows passwords
So i guess LDAP it is.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-09-2005 01:52 AM
тАО03-09-2005 01:52 AM
Re: synching unix and windows passwords
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-09-2005 06:44 PM
тАО03-09-2005 06:44 PM
Re: synching unix and windows passwords
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-09-2005 10:54 PM
тАО03-09-2005 10:54 PM
Re: synching unix and windows passwords
The unfortunate part of your statement is, those of us that have to be Sarbanes-Oxley (SOX) compliant, have to do so by Nov. of this year. We really don't have a few months to wait.
George,
I have a few people that refuse to upgrade to AD as well. We are going to create a trust between that domain and AD for network access, but that doesn't provide a password syncronization solution. Instead, they will have to maintain their own passwords until I can get management approval to force them into AD. The key here is the LDAP, without it, you can't really syncronize the systems without incurring a cost for some sort of identity management software, like HP Select Identity and Select Access (VERY costly!).
Dwyane
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-10-2005 01:52 AM
тАО03-10-2005 01:52 AM
Re: synching unix and windows passwords
Being based in the UK means that we are not subject to the same laws, therefore I know very little about the nuts and bolts of SOX compliance. The point I was trying to make is that there are centralised user management solutions such as Tivoli, MS-AD, NIS+, etc, and some of them are free and freely available. The bits that are lacking for the open source solutions are the nice tools to manage them, and that is what are being worked on at the moment. There could be nothing stopping you using Samba to synchronise with MS-AD, its just a bit new at the moment.