HP-UX Reference (11i v2 04/09) - 1M System Administration Commands N-Z (vol 4)

ManualsBrandsHP ManualsSoftwareHP-UX Reference Manuals

241

242

243

244

245

246

247

248

249

250

rpc.nispasswdd(1M) rpc.nispasswdd(1M)

NAME

rpc.nispasswdd, nispasswdd - NIS+ password update daemon

SYNOPSIS

/usr/sbin/rpc.nispasswdd

[

-a attempts ][-c minutes ][-D ][-g ][

-v ]

DESCRIPTION

rpc.nispasswdd

daemon is an ONC+ RPC service that services password update requests from

nispasswd (1) and yppasswd (1). It updates password entries in the NIS+

passwd table.

rpc.nispasswdd

is normally started from a system startup script after the NIS+ server (rpc.nisd (1M))

has been started.

rpc.nispasswdd

will determine whether it is running on a machine that is a master

server for one or more NIS+ directories. If it discovers that the host is not a master server, then it will

promptly exit. It will also determine if rpc.nisd (1M) is running in NIS(YP) compatibility mode (the

-Y option) and will register as yppasswdd

for NIS(YP) clients as well.

rpc.nispasswdd

will send to syslog all failed password update attempts, which will allow an adminis-

trator to determine whether someone was trying to "crack" the passwords.

rpc.nispasswdd

has to be run by a superuser.

Options

-a attempts Set the maximum number of attempts allowed to authenticate the caller within a pass-

word update request session. Failed attempts are processed by syslogd (1M) and the

request is cached by the daemon. After the maximum number of allowed attempts the

daemon severs the connection to the client. The default value is set to 3.

-c minutes Set the number of minutes a failed password update request should be cached by the dae-

mon. This is the time during which if the daemon receives further password update

requests for the same user and authentication of the caller fails, then the daemon will

simply not respond. The default value is set to 30 minutes.

-D Debug. Run in debugging mode.

-g Generate DES credential. By default the DES credential is not generated for the user if

they do not have one. By specifying this option, if the user does not have a credential,

then one will be generated for them and stored in the NIS+ cred table.

-v Verbose. With this option, the daemon sends a running narration of what it is doing to

the syslog daemon. This option is useful for debugging problems.

RETURN VALUE

0 Success.

1 An error has occurred.

WARNINGS

HP-UX 11i Version 2 is the last HP-UX release on which NIS+ is supported.

LDAP is the recommended replacement for NIS+. HP fully supports the industry standard naming ser-

vices based on LDAP.

FILES

/etc/rc.config.d/namesvrs Initialization script for NIS+.