Re: password sync issues

[Arun Gupta <arung@cdac.in>]

Hi Anirudh and all,

As might be you have seen that I have 2 tree for single user (one have 
unix password and another have samba password for same user) which have following DN

1. dn: uid=2011150,ou=User,dc=acer,dc=in
2. dn: uid=test1,ou=samba,dc=acer,dc=in

How can be use ldappasswd so that password will be sync in both different 
different trees.

Regards,
Arun


> Message: 1
> Date: Fri, 4 Nov 2016 16:30:56 +0530
> From: Anirudh Malhotra <8zero2ops@gmail.com>
> To: Arun Gupta <arung@cdac.in>
> Cc: openldap-technical@openldap.org
> Subject: Re: password sync issues
> Message-ID:
> 	<CAK7iNp4kJEs0Db7x04cwD5dkq7UY_jDB-ofT8PWsBQv1uig0tQ@mail.gmail.com>
> Content-Type: text/plain; charset="utf-8"
>
> Hi,
>
> Running the command:-
>
> ldappasswd -H ldap://server_domain_or_IP -x -D "user's_dn" -w old_passwd -a
> > old_passwd -s new_passwd
>
>
> In shell of openldap server will change the password of "user dn".
>
> Hope this helps!
>
> BR,
> Anirudh Malhotra
> Mail: 8zero2.in@gmail.com
> Facebook: www.facebook.com/8zero2
> Twitter: @8zero2_in
> Blog: blog.8zero2.in
>
> On Fri, Nov 4, 2016 at 9:57 AM, Arun Gupta <arung@cdac.in> wrote:
>
> > Hi,
> >
> > Thanks Anirudh.. for response, as I am newbie in openldap, please let me
> > know any already avaliabe script or some tutorial for the same.
> >
> > Regards,
> > Arun
> >
> >
> > and I think it may be also possible if  On Thu, 3 Nov 2016, Anirudh
> > Malhotra wrote:
> >
> > Hi,
> > > You can write a custom script which whenever the password is set in samba
> > > it
> > > sets it for the other tree as well, And you can attach this to the
> > > password
> > > changing app also.
> > >
> > > BR,
> > > Anirudh Malhotra
> > > Mail: 8zero2.in@gmail.com
> > > Facebook: www.facebook.com/8zero2
> > > Twitter: @8zero2_in
> > > Blog: blog.8zero2.in
> > >
> > > On Tue, Nov 1, 2016 at 6:49 PM, Arun Gupta <arung@cdac.in> wrote:
> > >       Hi,
> > >
> > >       I have configured 2 ldap tree, one for unix account (ou=User)
> > >       (below is sample ldif)
> > >
> > >
> > >       dn: uid=2011150,ou=User,dc=acer,dc=in
> > >       empID: 2011150
> > >       username: test1
> > >       cn: test1
> > >       centre: PN
> > >       objectClass: inetOrgPerson
> > >       objectClass: posixAccount
> > >       objectClass: top
> > >       objectClass: shadowAccount
> > >       oldempid: 1150
> > >       mail: test1@acer.in
> > >       givenName: test1
> > >       uid: 2011150
> > >       shadowLastChange: 15590
> > >       loginShell: /bin/bash
> > >       uidNumber: 11150
> > >       gidNumber: 11150
> > >       homeDirectory: /mbox4.2/test1
> > >       userPassword: {SHA}1SrgdEGUPa/U6KM43Kq9xTgnI7A=
> > >
> > >
> > >       and another for samba tree (ou=samba) - (below is sample tree)
> > >
> > >       dn: uid=test1,ou=samba,dc=acer,dc=in
> > >       uid: test1
> > >       sambaSID: S-1-5-21-4079184197-2446238136-3299756537-1005
> > >       displayName: test1
> > >       sambaAcctFlags: [UX         ]
> > >       objectClass: sambaSamAccount
> > >       objectClass: account
> > >       sambaLMPassword: C2F63206FC9CF08A1AA818381E4E281B
> > >       sambaNTPassword: 0242A7FEC5CD294F916925766089E573
> > >
> > >       and I am able to authenticate with samba configuration. But I am
> > >       not able to find out how the password will sync means if user
> > >       change his password then how NT password will reflect (here two
> > >       different tree). Is it possible to sync, if yes please please
> > >       help me out.
> > >
> > >       --
> > >
> > >       Thanks & Regards,
> > >
> > >       Arun Kumar Gupta
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL: <http://www.openldap.org/lists/openldap-technical/attachments/20161104/6670c881/attachment.html>
>
> ------------------------------
>
> Message: 2
> Date: Fri, 4 Nov 2016 09:57:40 +0530 (IST)
> From: Arun Gupta <arung@cdac.in>
> To: Anirudh Malhotra <8zero2ops@gmail.com>,
> 	openldap-technical@openldap.org
> Subject: Re: password sync issues
> Message-ID: <alpine.LFD.2.03.1611031035510.73139@pqnp.va>
> Content-Type: text/plain; charset="iso-8859-15"; Format="flowed"
>
> Hi,
>
> Thanks Anirudh.. for response, as I am newbie in openldap, please let me
> know any already avaliabe script or some tutorial for the same.
>
> Regards,
> Arun
>
> and I think
> it may be also possible if  On Thu, 3 Nov 2016, Anirudh Malhotra wrote:
>
> > Hi,
> >
> > You can write a custom script which whenever the password is set in samba it
> > sets it for the other tree as well, And you can attach this to the password
> > changing app also.
> >
> > BR,
> > Anirudh Malhotra
> > Mail:?8zero2.in@gmail.com
> > Facebook:?www.facebook.com/8zero2
> > Twitter: @8zero2_in
> > Blog:?blog.8zero2.in
> >
> > On Tue, Nov 1, 2016 at 6:49 PM, Arun Gupta <arung@cdac.in> wrote:
> >       Hi,
> >
> >       I have configured 2 ldap tree, one for unix account (ou=User)
> >       (below is sample ldif)
> >
> >
> >       dn: uid=2011150,ou=User,dc=acer,dc=in
> >       empID: 2011150
> >       username: test1
> >       cn: test1
> >       centre: PN
> >       objectClass: inetOrgPerson
> >       objectClass: posixAccount
> >       objectClass: top
> >       objectClass: shadowAccount
> >       oldempid: 1150
> >       mail: test1@acer.in
> >       givenName: test1
> >       uid: 2011150
> >       shadowLastChange: 15590
> >       loginShell: /bin/bash
> >       uidNumber: 11150
> >       gidNumber: 11150
> >       homeDirectory: /mbox4.2/test1
> >       userPassword: {SHA}1SrgdEGUPa/U6KM43Kq9xTgnI7A=
> >
> >
> >       and another for samba tree (ou=samba) - (below is sample tree)
> >
> >       dn: uid=test1,ou=samba,dc=acer,dc=in
> >       uid: test1
> >       sambaSID: S-1-5-21-4079184197-2446238136-3299756537-1005
> >       displayName: test1
> >       sambaAcctFlags: [UX? ? ? ? ?]
> >       objectClass: sambaSamAccount
> >       objectClass: account
> >       sambaLMPassword: C2F63206FC9CF08A1AA818381E4E281B
> >       sambaNTPassword: 0242A7FEC5CD294F916925766089E573
> >
> >       and I am able to authenticate with samba configuration. But I am
> >       not able to find out how the password will sync means if user
> >       change his password then how NT password will reflect (here two
> >       different tree). Is it possible to sync, if yes please please
> >       help me out.
> >
> >       --
> >
> >       Thanks & Regards,
> >
> >       Arun Kumar Gupta

-------------------------------------------------------------------------------------------------------------------------------
[ C-DAC is on Social-Media too. Kindly follow us at:
Facebook: https://www.facebook.com/CDACINDIA & Twitter: @cdacindia ]

This e-mail is for the sole use of the intended recipient(s) and may
contain confidential and privileged information. If you are not the
intended recipient, please contact the sender by reply e-mail and destroy
all copies and the original message. Any unauthorized review, use,
disclosure, dissemination, forwarding, printing or copying of this email
is strictly prohibited and appropriate legal action will be taken.
-------------------------------------------------------------------------------------------------------------------------------