I need a program to sync passwords on all our linux boxes on network
Linux - SoftwareThis forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I need a program to sync passwords on all our linux boxes on network
Is there such a program? All I need for it to do is make sure that when a user has changed their password on one box it propagates to all others. I do not need it to provide authentication on the network. I also don't mean a password manager that just helps folks remember their passwords. I just need it to sync the passwords.
This is one feature that Windows has over Linux for ease of use. Look at standing up a single windows box as a domain controller, then setup ldap or winbind to query against the domain controller for the password. That way no passwords are stored locally and any updates are realized immediately by your systems on the network. Besides that the only thing I could think of would be a cron job or something similar to do a copy of the /etc/shadow file.
Thanks folks, but setting up LDAP seems a bit of an overkill. We don't wan't single sign on, we just need to make sure that the users passwords are propagated to all other ubuntu boxes when it is changed on one of them. Is there anything other than LDAP for such a requirement?
Distribution: Debian /Jessie/Stretch/Sid, Linux Mint DE
Posts: 5,195
Rep:
In the end, synchronizing clients is much more complicated than centralized login. I find NIS simpler than LDAP, but I am lazy, and I should have looked into LDAP.
Think about something similar: users have a home directory where they store their files. What would be easier, to create a central shared disk, of keep all the home directories on the clients in sync in one or another way?
NIS is certainly simpler, but its plaintext only, OpenLDAP has the TLS option
I believe that even in Solaris (SUN wrote NIS), people are moving away from NIS.
The classic soln used to be NIS for auth and NFS for home disks as jlinkels hinted.
This script doesn't work since the env variables will not be present in the session running on the the remote host during the ssh - try it out and you'll see.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.