Search Again: Re: Using Optigold to Add Users to a Server From: Joe Lewis Date: Monday, July 21, 2003 Time: 10:21:43 am I don't know if anyone has successfully gotten the passwd program in Unix to work properly, because of the problems reguarding key character buffers. The passwd program CLEARS the buffers prior to asking for the password, and the passwords are supplied via STDIN, which means scripted interfaces to the passwd command nearly always fail. There are a few methods you can do to make this work : a) Run a cron on the Linux server, which encrypts any new passwords (using a database or something similar) b) Make a script that sets the encrypted password on the linux server, and call that with the SSH program Good Luck! Joe Lewis Scott Daniels wrote: >Hi Folks, > >My name is Lorn Conner, and I'm working with Scott Daniels to try and >configure Optigold to add users to several Linux servers. (I'm borrowing >Scotts email account to send this message). > >We're currently using Red Hat Linux 7.0 for our primary authentication >servers, but will probably be upgrading to 9.0 in the near future. We're >using Cistron Radius, authenticating using the PAM_Authentication module for >Linux, directly off of the password files on the servers. As such, we're not >using a RADIUS file to authenticate users. > >I have used the instructions provided by Susie Ward in the support section of >the digitalpoint website. Using her Windows based SSH client and the >instructions she provided, I can get optigold to add a user to the Linux >server in the following manner: > >We have configured Optigold with the "Create User" event. We use the command >line protocol, with the following instruction: > >c:\ssh\ssh.exe -l administratoraccount -v >testserver.genext.net /usr/sbin/adduser -c '<FName> <LName>' -s /bin/noshell - >d /home/<Login> <Login> > >This successfully adds the user to the server, but it does not set the >password for the account. I could use the -p <Pass> switch, but this inserts >a clear text password into the shadow file on the server, which doesn't >authenticate anyway. > >I know that the -p switch expects a pre-encrypted password. I can encrypt a >password, but I have no method for inserting the password either into a >variable which could be inserted into the adduser command, or to encrypt the >password within the command itself. > >If I try and set up a second event which manually sets the password for the >account (passwd accountname, then supply the password twice) I get an error. >(I'm supposing this is due to the nature of the way that Optigold executes >the commands, fire and forget). > >I'm hoping somebody out there can help me to figure out how to use Optigold >to add the user to the server and set the encrypted password automatically. > >Thanks for any assistance that can be offered, > > > >Lorn Conner >VP of Network Operations >Genext, LLC. >1-509-884-7791 > > > > > >--------------------------------------------------- >To subscribe, unsubscribe or to search list archive >please visit http://www.optigold.com/lists/isp.html >--------------------------------------------------- > > --------------------------------------------------- To subscribe, unsubscribe or to search list archive please visit http://www.optigold.com/lists/isp.html ---------------------------------------------------

Messages In This Thread: Using Optigold to Add Users to a Server by Scott Daniels on Jul 21, 2003 at 10:11:11 am Re: Using Optigold to Add Users to a Server by Joe Lewis on Jul 21, 2003 at 10:21:43 am