Using two way Password Sync - Windows and UNIX

This blog is in continuation of the blog  (http://blogs.technet.com/b/dsix/archive/2009/04/06/password-synchronization-between-windows-and-unix-part-ii.aspx)  where we had discussed on syncing password changes from Unix to Windows. Based on our testing and research, we did find some additional steps which need to be done to propagate the password changes from UNIX toWindows. However, this would not be a very much recommended…

2

Password changes made from AD are not getting synced to Unix for some users

Recently we got a case where Password changes made for domain users were not getting synced to Unix NIS clients. The issue was only happening for couple of users and rests all users’ password changes were synced correctly. To begin with we checked the configuration made on the Windows and UNIX side as per the…

0

Migrating Windows 2003 + SFU 3.5 and Server for NIS to Windows 2008 R2

Most of the domain controllers running on Windows 2003 and serving purpose of Server for NIS for *NIX systems are getting upgraded to Windows 2008 R2 these days. This needs some additional steps to be performed as Services for UNIX 3.5 no longer available on Windows 2008 R2 (as SFU 3.5 does not have any…

1

Password sync not working between Windows to Unix

Recently we got case where password Sync was not working. Customer had configured password Sync on a Windows 2003 R2 Domain controller. While troubleshooting we confirmed that the password Sync settings were correct. 1.    On Windows Box: Open IDMU – Password Sync- properties a)   “ Windows to Computer that runs on Unix” was checked b)  …

0

Password sync does not work for users while changing password on Solaris 10

Consider this scenario:   1.    Solaris 10 Sparc is working as NIS Master. 2.    We have also, installed the latest SSOD and PAM on the Solaris box. 3.    Windows 2008 R2 is configured with password sync. 4.    User3 exists on Solaris 10 and Windows 2008 R2 systems.   Problem :   When we try to…

0

PAM module does not work properly with UNIX NIS Master and Windows 2008 R2

Consider this scenario: RHEL is working as a NIS Master server. Windows 2008 R2 box is installed with Password synchronization component. Also, the SSOD module has been configured to run on RHEL. PAM module has been added on the RHEL box as well. BTW, new SSOD for Windows 2008 R2 here : http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=31518c70-1673-4be7-9e53-1c8a7d0d2643 When a…

0

Steps to configure Password Sync With NIS ( Windows -> Unix)

      1.      Make your Windows box a Domain controller. Install “Identity Management for UNIX” (Server for NIS and password Sync). To install this component user needs to be a part of Schema admin/ domain admin and enterprise admin group. 2.      Reboot the box 3.      In Active Directory values for Unix related attributes need to be…

0

Steps to configure Password Sync Without Installing NIS ( Windows -> Unix)

1.      Install Password Sync component under IDMU. ( to install this component user needs to be a part of Schema admin/ domain admin and enterprise admin group) 2.      Reboot the box 3.      Open IDMU – Password Sync- properties a)      Check the option “ Windows to Computer that runs on Unix” b)      Port number:6677 c)      Generate…

0

Using unixUserPassword attribute properly

In my last posts I discussed regarding NIS and LDAP implantation using new RFC 2307 compliant schema on Windows environment. An important aspect of using these much depends on unixUserAttribute. If you want the Active directory users to change their Windows password and at the same time this attributes to be updated we need to…

0