HPE Community
Operating System - HP-UX
1833030 Members
2536 Online
110049 Solutions
New Discussion

Trusted system's passwords

 
Nisar Ahmad
Regular Advisor

‎08-08-2006 08:05 PM

‎08-08-2006 08:05 PM

Trusted system's passwords

Hi All

I have built a new server and it is trusted same as current one. I want to get same password as on current one. What about if I copy information from /tcb/files/auth/*/userid for password and write/update in the same file on the new server ?

Thanks in advance

Nisar
0 Kudos
Reply
9 REPLIES 9
Peter Godron
Honored Contributor

‎08-08-2006 08:20 PM

‎08-08-2006 08:20 PM

Re: Trusted system's passwords

Nisar,
please see:
http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=982931
0 Kudos
Reply
Robert-Jan Goossens
Honored Contributor

‎08-08-2006 08:21 PM

‎08-08-2006 08:21 PM

Re: Trusted system's passwords

Nisar,

check this thread.

http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=982931

Regards,
Robert-Jan
0 Kudos
Reply
Steven E. Protter
Exalted Contributor

‎08-08-2006 08:36 PM

‎08-08-2006 08:36 PM

Re: Trusted system's passwords

Shalom,

I have heard varying reports on the reliablity of this option.

I recommend against it. When I did this for a real life migration in the US in 2003, I got management to sign off on assigning all users new passwords, which had to be changed within 15 days or the account would be made inactive.

This enabled us to see who really used their accounts and to enforce enhanced password security policies.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
V.Manoharan
Valued Contributor

‎08-09-2006 04:26 PM

‎08-09-2006 04:26 PM

Re: Trusted system's passwords

Hi Nisar,
Do copy the entire /tcb directory, /etc/passwd, /etc/group.create home directories through script or copy all the user home directories aswell.
regards
Manoharan
0 Kudos
Reply
Nisar Ahmad
Regular Advisor

‎08-09-2006 06:34 PM

‎08-09-2006 06:34 PM

Re: Trusted system's passwords

Hi There

I have already copied all the files from current production trusted server HP-UX 11.00 (without taking it out off trust) to the new server 11.23 and made new one trusted. I copied the /tcb/files/auth/*/* to the new server to make all the passwords same which are working. Is taht would be all good ?

Thanks

Nisar
0 Kudos
Reply
Nisar Ahmad
Regular Advisor

‎08-09-2006 06:38 PM

‎08-09-2006 06:38 PM

Re: Trusted system's passwords

Hi All

Just one thing more want to check whenever I make a server trusted it end up all password not working anymore. Is there any way we can fix that ?

Nisar
0 Kudos
Reply
Adisuria Wangsadinata_1
Honored Contributor

‎08-09-2006 07:31 PM

‎08-09-2006 07:31 PM

Re: Trusted system's passwords

Hi Nisar,

All you have to do is follow this document about 'Trusted system: How to copy configuration to another system' (docID : USECKBRC00007680) :

http://www2.itrc.hp.com/service/cki/docDisplay.do?docLocale=en_US&docId=200000080095230

Hope this information can help you.

Cheers,
AW
now working, next not working ... that's unix
0 Kudos
Reply
Adisuria Wangsadinata_1
Honored Contributor

‎08-09-2006 07:35 PM

‎08-09-2006 07:35 PM

Re: Trusted system's passwords

Hi Nisar,

Please take a note (from the document that I refer to you previously) :

'when users login to the system for the first time, they may be asked to change their password'

Hope this information can help you.

Cheers,
AW

now working, next not working ... that's unix
0 Kudos
Reply
doug hosking
Esteemed Contributor

‎08-10-2006 09:48 AM

‎08-10-2006 09:48 AM

Re: Trusted system's passwords

http://www2.itrc.hp.com/service/cki/docDisplay.do?docLocale=en_US&docId=200000080095230 has some important information regarding audit ID files for cron/at jobs. It is very important that you have the correct synchronization between those files and the files in /tcb. Copying /tcb is a necessary but not sufficient part of the overall solution. You may also need to copy /etc/rc.config.d/auditing and reconfigure where any audit trails go.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.