linux-nisplus Digest, Vol 34, Issue 2

Gene Loriot gene.loriot at usa.net
Fri Jan 20 05:52:14 GMT 2006 

You have gotten yourself into trouble using the nispasswd command.  I
REALLY don't know why they have it.

I would use something line Adminsuite 2.3 (with patch!) or maybe 
passwd -r nisplus, then a  nisping org_Dir   and if this still is not
working add a nisclient -co <username> to overwrite the creds.  If you
get changing things too quickly I have found that between the time for
NISPlus to replicate and the name service cache daemon messing, I mean
helping out, things are in trouble.

Cycling the NSCD is a good idea  (/etc/init.d/nscd stop; sleep 2;
/etc/init.d/nscd start)

AND be sure there isn't a local password in /etc/passwd.  I am assuming
that the /etc/nsswitch.conf for passwd is:

passwd:  files nisplus

Please let me know if you are still having trouble.

Gene


------ Original Message ------
Received: Wed, 18 Jan 2006 07:00:37 AM EST
From: linux-nisplus-request at lists.samba.org
To: linux-nisplus at lists.samba.org
Subject: linux-nisplus Digest, Vol 34, Issue 2

> Send linux-nisplus mailing list submissions to
> 	linux-nisplus at lists.samba.org
> 
> To subscribe or unsubscribe via the World Wide Web, visit
> 	https://lists.samba.org/mailman/listinfo/linux-nisplus
> or, via email, send a message with subject or body 'help' to
> 	linux-nisplus-request at lists.samba.org
> 
> You can reach the person managing the list at
> 	linux-nisplus-owner at lists.samba.org
> 
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of linux-nisplus digest..."
> 
> 
> Today's Topics:
> 
>    1. cannot change password (Sylvia Gelman)
> 
> 
> ----------------------------------------------------------------------
> 
> Message: 1
> Date: Wed, 18 Jan 2006 09:04:01 +0100
> From: Sylvia Gelman <sgelman at rtr.tu-darmstadt.de>
> Subject: cannot change password
> To: linux-nisplus at lists.samba.org
> Message-ID: <43CDF671.6000300 at rtr.tu-darmstadt.de>
> Content-Type: text/plain; charset=ISO-8859-1; format=flowed
> 
> Hi,
> hope someone can help.
> We are using NIS+ for years. Now I have problems changing nis+ passwords for
users.
> when using nispasswd, I get the following error:
> Enter old NIS+ password:
> Could not create conversion key !
> 
> after a keylogin, I get the following error:
> Enter old NIS+ password:
> ERROR: All auth attempts incorrect
>         password not changed
> 
> after finding the message above, I tried passwd -r nisplus, now I get the
following error:
> passwd -r nisplus
> Changing password for userx.
> Old Password:
> New password:
> Re-enter new password:
> FEHLER: Identifier invalid
>          Password wurde nicht geändert
> Error while changing the NIS+ password.
> Fehler: Das Passwort wurde nicht geändert.
> passwd: Authentication token manipulation error
> 
> Any suggestions?
> 
> thanks
> 
> Sylvia Gelman
> 
> 
> gene.loriot at usa.net wrote:
> There was actually one, and only one user that had this problem with a
> correctly authenticated environment.  I never figured it out, but this
> was only one user.
> 
> Rule:  NEVER USE NISPASSWD      I don't understand why they don't just
> zap it???
> 
> First off, on the client where you are going to do the password change,
> become root and type   nisdefaults.   Be certain that the root user has
> good credentials.  Also type a keylogin   enter the password as prompted
> and be certain that you get the promtp back with no other messages.
> 
> Then as the user, do a keylogin.  If you get an error message this is
> due to the nisplus password being different from the UNIX password.  As
> root, to an "administrative principal" do a:  nisclient -co <user>
> and set both passwords the same.
> 
> Be certain that there is no local password entery, and lastly use the
> passwd -r nisplus.
> 
> 
> 
> 
> 
> 
> ------------------------------
> 
> _______________________________________________
> linux-nisplus mailing list
> linux-nisplus at lists.samba.org
> https://lists.samba.org/mailman/listinfo/linux-nisplus
> 
> 
> End of linux-nisplus Digest, Vol 34, Issue 2
> ********************************************
> 



Gene Loriot, CSA/SCNA	
"...on a clear disk you can seek forever..."
Farm Side Systems

More information about the linux-nisplus mailing list