SUMMARY: NIS/Enhanced Security to LDAP help

From: Don Becker (don@adelphi.edu)
Date: Thu Aug 22 2002 - 08:54:17 EDT

• Next message: Tom Linden: "Booting on PWS500au, SRM?"
• Previous message: emanuele.lombardi@casaccia.enea.it: "symbol "__pthread_self" unresolved in APACHE2 with PHP4"
• In reply to: Don Becker: "NIS/Enhanced Security to LDAP help"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Thanks to:

noghri
Ken Kleiner

Basically, what's required is a script which extracts the u_pwd field from
prpasswd and copies it into the password field on passwd. From there, the
migration scripts can read the password, and authentication seems to work -
at least in our test environment.

Thanks again!
--Don

From: noghri

> Passwd_extract just does a grep on the password file and displays
> entries in a certain uid range. ldap_add_user adds the entry to the
> ldap tree by reading in passwd entries form a file.
>
> If you can get the hash from prpasswd and create a text file that would
> be basically the passwd file, you can use ldap_add_user to import the
> users.

From: Ken Kleiner

> I tested a script that will extract the password entry from
> a prpasswd entry and plug it into the proper 'password' field that is
> in the /var/yp/src/passwd file - then I used that file for migration.

My original post, for reference:

On Tue, 20 Aug 2002, Don Becker wrote:

> We're in the process of migrating from NIS/Enhanced Security to an LDAP
> implementation for our authentication scheme, as was suggested to me by the
> members of this list some time ago. However, some of our research has come
> up short.
>
> First, our hardware:
>
> Current NIS master and slave: Tru64 v4.0a
> Current NIS clients: v4.0a and v3.2g
> Proposed LDAP master: v5.1a
>
> In looking through the OSIS/Internet Express documentation on the HP
> website (our 5.1a media and Internet Express kit are en route) , it appears
> that the passwd_extract utility will create LDAP-compatible files from a
> passwd file. However, under Enhanced Security, the NIS passwd map has
> dummy entries for the passwords, as those are stored in prpasswd. My
> questions, since there doesn't seem to be a mention of this in the docs,
> are:
>
> - Can I get the password info from prpasswd through passwd_extract, and if
> so, how?
>
> - Will OpenLDAP or iPlanet work in a mixed-version environment? (I'd
> prefer not to upgrade the v4.0f client to v5.1a, especially since our
> time frame for this project is limited, even if it means ordering v5.4
> of the OSIS disc.)
>
> Thanks,
> --Don
>
>

-- 
Don Becker              don@adelphi.edu              http://www.donbecker.org
Unix System Administrator, Adelphi University          http://www.adelphi.edu

• Next message: Tom Linden: "Booting on PWS500au, SRM?"
• Previous message: emanuele.lombardi@casaccia.enea.it: "symbol "__pthread_self" unresolved in APACHE2 with PHP4"
• In reply to: Don Becker: "NIS/Enhanced Security to LDAP help"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:48:50 EDT