[linux-nisplus Digest, Vol 11, Issue 2]

Gene Loriot gene.loriot at usa.net
Wed Nov 12 16:21:09 EST 2003 

There was actually one, and only one user that had this problem with a
correctly authenticated environment.  I never figured it out, but this
was only one user.

Rule:  NEVER USE NISPASSWD      I don't understand why they don't just
zap it???

First off, on the client where you are going to do the password change, 
become root and type   nisdefaults.   Be certain that the root user has
good credentials.  Also type a keylogin   enter the password as prompted
and be certain that you get the promtp back with no other messages.

Then as the user, do a keylogin.  If you get an error message this is
due to the nisplus password being different from the UNIX password.  As
root, to an "administrative principal" do a:  nisclient -co <user>
and set both passwords the same.

Be certain that there is no local password entery, and lastly use the
passwd -r nisplus.

After that, well, we will need to work a little more.

gene.loriot at usa.net


linux-nisplus-request at lists.samba.org wrote:

> Send linux-nisplus mailing list submissions to
> 	linux-nisplus at lists.samba.org
> 
> To subscribe or unsubscribe via the World Wide Web, visit
> 	http://lists.samba.org/mailman/listinfo/linux-nisplus
> or, via email, send a message with subject or body 'help' to
> 	linux-nisplus-request at lists.samba.org
> 
> You can reach the person managing the list at
> 	linux-nisplus-owner at lists.samba.org
> 
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of linux-nisplus digest..."
> 
> 
> Today's Topics:
> 
>    1. NIS+ Password Headaches (Maxwell Bottiger)
> 
> 
> ----------------------------------------------------------------------
> 
> Message: 1
> Date: Mon, 10 Nov 2003 14:57:47 -0500 (EST)
> From: Maxwell Bottiger <sleepylight at jive-turkey.net>
> Subject: NIS+ Password Headaches
> To: linux-nisplus at lists.samba.org
> Message-ID: <Pine.LNX.4.44.0311101443520.12667-100000 at jive-turkey.net>
> Content-Type: TEXT/PLAIN; charset=US-ASCII
> 
> Hi all,
> 	I'd like to update the passwords for my client computer on a 
> network using NIS+.  All the client PCs are x86 boxes running RedHat 9, 
> and all the clients have the NIS+ client packages installed.  Oh, and the 
> passwords I generated on the server from it's local configuration files 
> all work for logging in.
> 	The problem is that now everything is up and I can't change it.  
> Maybe I don't understand fully what I'm supposed to be changing, but I was
> under the impression that much like NIS, I could just call passwd or
> nispasswd from a client computer and change my password seamlesly.
> 
> Here's what is happening at the moment.
> 
> On the client side:
> 
> [mpbottig at host65-156 ~]$ passwd
> Changing password for user mpbottig.
> passwd: Authentication token manipulation error
> 
> [mpbottig at host65-156 ~]$ nispasswd
> Enter old NIS+ password:
> Could not create conversion key !
> 
> [root at host65-156 mpbottig]# /usr/bin/nispasswd mpbottig
> Enter old NIS+ password:
> Enter RPC secure password:
> Can't find unix.0 at Micro.Apgea.Army.Mil's secret key
> 
> On the server side:
> 
> > nispasswd
> nispasswd:  Changing password for mpbottig
> Enter login(NIS+) password:
> passwd(SYSTEM): Sorry, wrong passwd
> Permission denied
> 
> 
> In either case I have tried both my normal login password, and the default 
> "nisplus" password the installation scripts told me to use when "the 
> nisclient script requests the nework password."  Nothing in any of the 
> messages actually says 'network password', and I don't have a clear 
> understanding of how a program like chkey ties into everything.
> 
> So, I guess I'm asking for someone to explain what the process should be 
> for when users want to change their passwords in this sort of setup, and 
> what I'm doing wrong so far.
> 
> Thanks for reading.
>  -- 
> 
> 
> -Maxwell Bottiger
> 
> This thing is like a wolf
> This thing is a wolf
> Thus, it is a thing to be bansished
> 
> 
> 
> 
> ------------------------------
> 
> _______________________________________________
> linux-nisplus mailing list
> linux-nisplus at lists.samba.org
> http://lists.samba.org/mailman/listinfo/linux-nisplus
> 
> 
> End of linux-nisplus Digest, Vol 11, Issue 2
> ********************************************
> 



Gene Loriot, CSA/SCNA	
"...on a clear disk you can seek forever..."
Farm Side Systems

More information about the linux-nisplus mailing list