[Ilugc] NIS Password problem on client end
- From: shaikaman@xxxxxxxxx (Aman)
- Date: Thu, 17 Oct 2002 02:15:07 -0700 (PDT)
--0-1360591642-1034846107=:85199
Content-Type: text/plain; charset=us-ascii
Hi all,
I tried both /var/yp make and yppasswd. But I'm getting error.
In the first way, ie (make) it says
*** No rule to make target '/etc/netgroup', needed by 'netgroup'.
Stopped.
In the second way(yppasswd) :
# yppasswd aman(user)
Enter root passwd: XXXXXX
Changing NIS Password for aman on server
Plz enter new password : yyyy
Plz Retype new password:yyyy
Error while changing the NIS password
The NIS password has not been changed on server
Those were the reported errors. How to fix this?
TIA,
aman
"P. Sriram" <sriram@xxxxxxxxxxxxxxxxxx> wrote:On Tue, 15 Oct 2002, Aman wrote:
I'm running NIS Server on Redhat6.2. I've created 7 users in NIS Server
m/c. and I've created directories for the users with their name as the
login id on the client end(nis clients) . Now I've changed the password
for a user in NIS Server m/c and the thing is I'm still able to login
with the old password of the user from the client end.
But the new password chang effected only onm the server part.
Why is this so?
short answer: cd to /var/yp and run make. this will propagate the change
to all clients. in future, you can use yppasswd on the server also to
change password.
long answer: well, nis password change is partially broken in redhat
distros upto and including 7.3 (haven't tried on 8.0 yet). using nis,
since the passwords are on the server and not on the client, the
'classical' way of doing password change was to use yppasswd command
(instead of the passwd command). this would communicate with server and
make the change in the proper manner - in the passwd file on the server
and also in the nis database. every time a user changes a password thusly,
the server has to rebuild the nis database so that the change is seen by
all clients. if the passwd command is used on the server (not the yppasswd
command), it will update the passwd file but not the nis database - so
clients will continue to use the old password that was in the database.
this would appear to be the problem in this case. this can be fixed by
cd'ing to /var/yp and running make (which will rebuild the databases). the
permanent fix for this is to not run passwd on the server but only
yppasswd so that the database is rebuilt automatically. however, this
would need the server also to be a nis client. also, admin users like root
cannot use this method since traditionally these passwords are not part of
the nis database. enter the well known kludge of making passwd a link to
yppasswd and saving the real 'passwd' command for use by admin users only.
with newer version of nis and redhat, things are done better (through pam)
and invoking passwd command on the nis clients correctly invokes the yp
call to the server. as of redhat 7.3, invoking passwd on the server does
make the change to the database and the file but an error message pops up
claiming that the change has not been made (maybe, there is something in
my config file that is wrong; i dont think so).
sriram
_______________________________________________
To unsubscribe, email ilugc-request@xxxxxxxxxxxxxxxxxx with
"unsubscribe
address"
in the subject or body of the message.
http://www.aero.iitm.ernet.in/mailman/listinfo/ilugc
--Silly is a State of mind, Stupid is a way of Life Endrum Nanriyudan ,Aman (
91 )( 044 ) 653 0236
---------------------------------
Do you Yahoo!?
Faith Hill - Exclusive Performances, Videos, & more
faith.yahoo.com
--0-1360591642-1034846107=:85199
Content-Type: text/html; charset=us-ascii
<P>Hi all,
<P>I tried both /var/yp make and yppasswd. But I'm getting error.
<P>In the first way, ie (make) it says
<P> *** No rule to make target
'/etc/netgroup', needed by 'netgroup'. Stopped.
<P>In the second way(yppasswd) :
<P># yppasswd aman(user)
<P>Enter root passwd: XXXXXX
<P>Changing NIS Password for aman on server
<P>Plz enter new password : yyyy
<P>Plz Retype new password:yyyy
<P>Error while changing the NIS password
<P>The NIS password has not been changed on server
<P> Those were the reported errors. How to fix this?
<P>
<P>TIA,
<P>aman
<P>
<P> <B><I>"P. Sriram" <sriram@xxxxxxxxxxxxxxxxxx></I></B> wrote:
<BLOCKQUOTE style="PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #1010ff
2px solid">On Tue, 15 Oct 2002, Aman wrote:<BR><BR>> I'm running NIS Server
on Redhat6.2. I've created 7 users in NIS Server<BR>> m/c. and I've created
directories for the users with their name as the<BR>> login id on the client
end(nis clients) . Now I've changed the password<BR>> for a user in NIS
Server m/c and the thing is I'm still able to login<BR>> with the old
password of the user from the client end.<BR>> But the new password chang
effected only onm the server part.<BR>> Why is this so?<BR><BR>short answer:
cd to /var/yp and run make. this will propagate the change <BR>to all clients.
in future, you can use yppasswd on the server also to <BR>change
password.<BR><BR>long answer: well, nis password change is partially broken in
redhat<BR>distros upto and including 7.3 (haven't tried on 8.0 yet). using
nis,<BR>since the passwords are on the server and not on the client, th!
e<BR>'classical' way of doing password change was to use yppasswd
command<BR>(instead of the passwd command). this would communicate with server
and<BR>make the change in the proper manner - in the passwd file on the
server<BR>and also in the nis database. every time a user changes a password
thusly,<BR>the server has to rebuild the nis database so that the change is
seen by<BR>all clients. if the passwd command is used on the server (not the
yppasswd<BR>command), it will update the passwd file but not the nis database -
so<BR>clients will continue to use the old password that was in the
database.<BR>this would appear to be the problem in this case. this can be
fixed by<BR>cd'ing to /var/yp and running make (which will rebuild the
databases). the<BR>permanent fix for this is to not run passwd on the server
but only<BR>yppasswd so that the database is rebuilt automatically. however,
this<BR>would need the server also to be a nis client. also, admin users like
root<BR>cannot u!
se this method since traditionally these passwords are not part of<BR>the nis
database. enter the well known kludge of making passwd a link to<BR>yppasswd
and saving the real 'passwd' command for use by admin users only.<BR>with newer
version of nis and redhat, things are done better (through pam)<BR>and invoking
passwd command on the nis clients correctly invokes the yp<BR>call to the
server. as of redhat 7.3, invoking passwd on the server does<BR>make the change
to the database and the file but an error message pops up<BR>claiming that the
change has not been made (maybe, there is something in <BR>my config file that
is wrong; i dont think
so).<BR><BR>sriram<BR><BR><BR><BR><BR><BR>_______________________________________________<BR>To
unsubscribe, email ilugc-request@xxxxxxxxxxxxxxxxxx with <BR>"unsubscribe
<PASSWORD>address"<BR>in the subject or body of the message.
<BR>
http://www.aero.iitm.ernet.in/mailman/listinfo/ilugc</BLOCKQUOTE><BR><BR><DIV>--</DIV>
<DIV><FONT face="Garamond, Times, Serif" size=4><STRONG>Silly</STRONG>
is a State of mind, <STRONG>Stupid</STRONG> is a way of
Life </FONT><FONT face="Lucida Handwriting, Cursive"> </FONT><IMG
height=12 src="
http://graphics.hotmail.com/emsmile.gif" width=12></DIV>
<DIV> </DIV>
<DIV>Endrum Nanriyudan <IMG height=12
src="
http://graphics.hotmail.com/emcocktl.gif" width=12>,</DIV>
<DIV></DIV>
<DIV>Aman</DIV>
<DIV><IMG height=12 src="
http://graphics.hotmail.com/emphone.gif" ;
width=12> ( 91 )( 044 ) 653 0236</DIV><p><br><hr size=1>Do you Yahoo!?<br>
<a href="
http://faith.yahoo.com";>Faith Hill</a> - Exclusive Performances,
Videos, & more<br>
<a href="
http://faith.yahoo.com";>faith.yahoo.com</a>
--0-1360591642-1034846107=:85199--
Other related posts: