6

User Tasks

This chapter describes the following tasks your users will need to do:

“To Change Passwords” on page 169

“To Change Personal Information” on page 173

To Change Passwords

With LDAP-UX Client Services, users change their password with the passwd(1) command. Depending on how you have PAM configured and depending on where the user’s information is, in the directory or in /etc/passwd, users may get prompted for their password twice as PAM looks in the configured locations for the user’s information.

Since LDAP directory replicas may not be modifiable, the passwd(1) command may not work on clients configured to use a directory replica. In this case you could use the ldappasswd(8) command. You might wrap an ldappasswd command in a passwd wrapper, similar to the yppasswd(1) command. The wrapper would ask the user for the old password, call ldapsearch to find the current user’s DN, then call ldappasswd(8) and specify the master LDAP directory server. See Figure 6-3 on page 171 for an example you can modify and use.

For example, say clients 1-50 use the master directory server on sys001 and clients 51-100 use the replica directory server on sys002. The passwd(1) command on clients 1-50 can modify passwords in the master

Chapter 6

169

Page 183
Image 183
HP UX LDAP-UX Integration Software manual To Change Passwords