I have a client bound to FreeIPA using NIS, however when doing a "ypcat passwd" the password fields are an asterisk (*) instead of a password hash.
The NIS integration docs are a bit sparse - am I missing something to allow NIS clients to authenticate against FreeIPA as an actual NIS client? Is that supported?
Russell Jones via FreeIPA-users wrote:
I have a client bound to FreeIPA using NIS, however when doing a "ypcat passwd" the password fields are an asterisk (*) instead of a password hash.
The NIS integration docs are a bit sparse - am I missing something to allow NIS clients to authenticate against FreeIPA as an actual NIS client? Is that supported?
The hash shouldn't be needed. It should be possible to use NIS to retrieve user information and authenticate using another mechanism than password, Kerberos for example.
rob
Thanks! We want to auth with password though. Just found in the docs where it says NIS auth requires the hash to be set to crypt, so we are abandoning this idea.
On Thu, Feb 6, 2020, 4:00 PM Rob Crittenden rcritten@redhat.com wrote:
Russell Jones via FreeIPA-users wrote:
I have a client bound to FreeIPA using NIS, however when doing a "ypcat passwd" the password fields are an asterisk (*) instead of a password
hash.
The NIS integration docs are a bit sparse - am I missing something to allow NIS clients to authenticate against FreeIPA as an actual NIS client? Is that supported?
The hash shouldn't be needed. It should be possible to use NIS to retrieve user information and authenticate using another mechanism than password, Kerberos for example.
rob
freeipa-users@lists.fedorahosted.org
-
Rob Crittenden -
Russell Jones