HPE Community
Operating System - HP-UX
1827706 Members
2659 Online
109967 Solutions
New Discussion

Re: Trusted mode - backup/restore of the password

 
SOLVED
Go to solution
Enrico Venturi
Super Advisor

‎01-30-2004 02:05 AM

‎01-30-2004 02:05 AM

Trusted mode - backup/restore of the password

Hello colleagues,
I want to use MC/SG with the Trusted Mode configuration.
I understood that in terms of system management the main feature (perceived by the system administrator) is related to the password management; after that there are several features available, system monitoring, .... but they are just available, no effort is required.
In my cluster I'd like to have the same operators on the main and on the spare node;
currently we performs some "backup" of the main node, and when a Transfer Of Control occurs the backup is restored on the spare node.
My question is:
can we adopt thie solution again in TM?
can we backup the passwords (even if it's a more complex) in teh main node and restore them on the spare node?
Is there, in the passwords, some dependency on the hostname / IP address of the main node?

thaks a lot
Enrico
0 Kudos
Reply
4 REPLIES 4
Steven E. Protter
Exalted Contributor

‎01-30-2004 02:19 AM

‎01-30-2004 02:19 AM

Re: Trusted mode - backup/restore of the password

You should be able to restore the individual files in:

/tcb/files/auth

There are folders for each letter in the alphabet.

You can restore the files in there and it should work. You can also just null out the password and force a change on next login.

I'm attaching a script that does that on trusted systems.

If you restore the file in /tcb/files/auth/r

You will be restoring the file for all users starting with the letter r.

That means root and randy will BOTH be restored.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
Enrico Venturi
Super Advisor

‎01-30-2004 02:28 AM

‎01-30-2004 02:28 AM

Re: Trusted mode - backup/restore of the password

Thanks for your reply,
and what about if I want to keep the same password?
can log on in the node spare by using the password that I set on the node main?
0 Kudos
Reply
Darren Prior
Honored Contributor

‎01-30-2004 03:23 AM

‎01-30-2004 03:23 AM

Solution

Re: Trusted mode - backup/restore of the password

Hi Enrico,

There isn't really a dependency on a given host for the passwords, however it does contain the last successful and unsuccessful login details for each account on the machine. If you copy the /tcb files to another machine these values become less useful.

I wonder if something like NIS+ or LDAP might be a suitable way forward for you?

regards,

Darren.
Calm down. It's only ones and zeros...
Reply
Jeff Schussele
Honored Contributor

‎01-30-2004 03:46 AM

‎01-30-2004 03:46 AM

Re: Trusted mode - backup/restore of the password

Hi Enrico,

To keep the user definitions "in sync" between the two I would transfer the following:

/etc/passwd
/etc/group
/tcb/files/auth/*
/home/* #optional but recommended
/etc/default/security #If used

You can cron this to do it periodically.

Rgds,
Jeff
PERSEVERANCE -- Remember, whatever does not kill you only makes you stronger!
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.