Hi all, Does anybody know, how I can generate a password hash for users stored in the $FWDIR/conf/fwmusers file ? Which format uses fwmusers for the hash ?
---- [Expert@cplog1]# cat $FWDIR/conf/fwmusers CP-USER 26ad213e6db712024850a63e4f4c08ff03a2acfb ffffffff [Expert@cplog1]# ---- We want to establish a process that allows new users to create a checkpoint password offline by creating a hash for their password with a generator. This hash will be distributed to different checkpoint systems (i.e. log servers) by script. We did a similar procedure with unix accounts: 1. New User creates password hash: echo "mypassword"|openssl passwd -1 -stdin 2. User sends password hash (e.g. $1$XEUOm2Nv$g8T8QzaytvCNtdUi0DE2d1) to central admin 3. Central Admin copies the hash into /etc/shadow of different UNIX systems by script. Thanks, Bye Martin WINCOR NIXDORF International GmbH Sitz der Gesellschaft: Paderborn Registergericht Paderborn HRB 3507 Geschäftsführer: Eckard Heidloff (Vorsitzender), Stefan Auerbach, Dr. Jürgen Wunram Vorsitzender des Aufsichtsrats: Karl-Heinz Stiller Steuernummer: 339/5884/0020 - Ust-ID Nr.: DE812927716 - WEEE-Reg.-Nr. DE44477193 Diese E-Mail enthält vertrauliche Informationen. Wenn Sie nicht der richtige Adressat sind oder diese E-Mail irrtümlich erhalten haben, informieren Sie bitte sofort den Absender und vernichten Sie diese E-Mail. Das unerlaubte Kopieren sowie die unbefugte Weitergabe dieser E-Mail ist nicht gestattet. This e-mail may contain confidential information. If you are not the intended recipient (or have received this e-mail in error) please notify the sender immediately and destroy this e-mail. Any unauthorised copying, disclosure or distribution of the material in this e-mail is strictly forbidden. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
