Hi Kevin, Using LDAP would really be the best option here. Usually I don't have an available LDAP installation for using but installing would not be that hard.
Thanks! Cheers, On Mon, 2018-06-18 at 13:45 -0700, Kevin Keane wrote: > The system key will only work to set up one user (usually root). > > For ordinary users, you can use synchronization to copy the > group/shadow/passwd files, but that's usually a bad idea because it also > clobbers the root password, and it requires resyncing (or even rebooting > compute nodes) every time a user changes passwords or you add a user. > > You best bet is actually to not maintain users in the group/shadow/passwd > files at all, but use LDAP. > > Depending on your situation, you may be able to use an existing LDAP server in > your organization, such as Active Directory. Or you may need to set up your > own on the management node. The following document is outdated, but still > reasonably close to reality. https://sourceforge.net/p/xcat/wiki/Setting_up_LD > AP_in_xCAT/ > > One pitfall you generally have to watch out for: make sure that the same user > always has the same user ID, group membership etc. across all nodes. Copying > the group/shadow/passwd files will do that for you, and LDAP will if it is set > up correctly (with the posixAccount schema for each user, and the uidNumber > etc. populated). > > > _______________________________________________________________________ > Kevin Keane | Systems Architect | University of San Diego ITS | kkeane@sandieg > o.edu > Maher Hall, 192 |5998 Alcalá Park | San Diego, CA 92110-2492 | 619.260.6859 > REMEMBER! No one from IT at USD will ever ask to confirm or supply your > password. > These messages are an attempt to steal your username and password. Please do > not reply to, click the links within, or open the attachments of these > messages. Delete them! > > On Mon, Jun 18, 2018 at 9:55 AM, Daniel Hilst Selli <[email protected] > > wrote: > > Hi! > > > > I had a problem where I couldn't login to a computing node with the password > > contained at system key of passwd table. I search in the internet for > > options on > > setting password for xcat. > > > > The documentation says > > > > chtab key=system passwd.username=root passwd.password=abc123 > > > > But I don't really understand how this password would get to /etc/shadow of > > the > > computing nodes. Changing the password and reboot stateless node doesn't has > > effect, the node keep using the old password and passwd table and nodes > > /etc/shadow are out of sync. > > > > I saw people on internet synchronizing /etc/{group,shadow,passwd} from > > management node, but if this is the case, what is the point of the system > > key on > > passwd table? > > > > Any suggestion on how to handle computing node users will be appreciated! > > > > > > Regards, > > > > ---------------------------------------------------------------------------- > > -- > > Check out the vibrant tech community on one of the world's most > > engaging tech sites, Slashdot.org! http://sdm.link/slashdot > > _______________________________________________ > > xCAT-user mailing list > > [email protected] > > https://lists.sourceforge.net/lists/listinfo/xcat-user > > ------------------------------------------------------------------------------ > Check out the vibrant tech community on one of the world's most > engaging tech sites, Slashdot.org! http://sdm.link/slashdot > _______________________________________________ > xCAT-user mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/xcat-user ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ xCAT-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/xcat-user
