Manualshelf

LDAP-UX Client Services B.04.00 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software
181182183184185186187188189190
Chapter 6 169
6 User Tasks
This chapter describes the following tasks your users will need to do:
“To Change Passwords” on page 169
“To Change Personal Information” on page 173
To Change Passwords
With LDAP-UX Client Services, users change their password with the
passwd(1) command. Depending on how you have PAM configured and
depending on where the user’s information is, in the directory or in
/etc/passwd, users may get prompted for their password twice as PAM
looks in the configured locations for the user’s information.
Since LDAP directory replicas may not be modifiable, the passwd(1)
command may not work on clients configured to use a directory replica.
In this case you could use the ldappasswd(8) command. You might wrap
an ldappasswd command in a passwd wrapper, similar to the
yppasswd(1) command. The wrapper would ask the user for the old
password, call ldapsearch to find the current user’s DN, then call
ldappasswd(8) and specify the master LDAP directory server. See
Figure 6-3 on page 171 for an example you can modify and use.
For example, say clients 1-50 use the master directory server on sys001
and clients 51-100 use the replica directory server on sys002. The
passwd(1) command on clients 1-50 can modify passwords in the master