[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: systematic Kerberization



On Tue, 2004-05-11 at 19:31, Rudi Chiarito wrote:
> On Tue, May 11, 2004 at 04:21:53PM -0300, Jean-Rene Cormier wrote:
> > Why can't you setup PAM to change both the Kerberos and the shadow
> > password? 
> 
> Then you need to handle the case when changing either (and not both of
> them) fails.

There's a few things that could be done for that, if you change your
password while being disconnected you'll have to change it again to sync
them when you'll connect back to the network. Or only allow users to
change their password if they're connected to the network. Configuring
PAM for either of these way shouldn't be too hard. I'm sure there are
other ways to do it also.

Jean-Rene Cormier




[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]