Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Re: importing NIS to eDirectory

25 views
Skip to first unread message

a...@novell.com

unread,
Sep 8, 2009, 3:33:03 PM9/8/09
to
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

This has come up in the past, and yes it is possible to import crypt'd
passwords if you use the Simple Password feature of eDirectory:

http://forums.novell.com/novell-product-support-forums/edirectory/edir-netware/54452-importing-encrypted-passwords-into-edirectory.html

Good luck.

aladen wrote:
> Hello
>
> I am working on a project to convert our NIS based systems to an LDAP
> based authentication.
>
> I would like to use eDirectory as the base LDAP store. In some ways, I
> know its a bit of overkill, but I like the featureset and relaibility of
> eDir when compared to openldap.
>
> 2 Problems though.
>
> 1: Lack of decent documentation. Is there a really good resource for
> configuring and working with eDir? Most of the Novell documentation
> seems poorly organized and incomplete. I am not necessarily looking for
> eDirectory for Dummies (though it might not be a bad idea) but at least
> some documentation that goes over the basic functionality in a easy to
> understand manner with useful examples.
>
> 2: Is there any way to import a NIS based password file, including
> crypt'ed passwords into eDir? I am trying to avoid forcing the users to
> reset thier passwords when I do the cut over, but I cant find a way to
> have eDir use the crypt string as the password, even temporarily until
> the user changes their password.
> This would be the major reason I would look at openldap instead. It
> would make the conversion much more user friendly.
>
> Thanks
> -Andrew
>
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=6v11
-----END PGP SIGNATURE-----

a...@novell.com

unread,
Sep 8, 2009, 5:01:02 PM9/8/09
to
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I was able to find it by searching on support.novell.com for the TID number.

Yes, if you import the crypt'd password and then login via something that
can use the Simple Password Login Method and you have everything setup
properly (including, after you import Simple Password, a UP policy applied
to the user somehow) this should then set your UP based on the value entered.

Good luck.

aladen wrote:
> I was able to access the cool solution referenced in the post
>
> 'Cool Solutions: Importing Encrypted Passwords Into eDirectory'
> (http://www.novell.com/coolsolutions/trench/5660.html)
>
> but the original TID TID10066348 seems to be unavailable. Does anyone
> have a copy of it?
>
> What is the difference between simple password and universal password?
>
> If I start by setting the the simple password by importing the crypted
> password, and the user later uses ldap to change thier password, do they
> get converted to a universal/NDS password?
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=V0Tb
-----END PGP SIGNATURE-----

Peter Kuo

unread,
Sep 8, 2009, 9:24:13 PM9/8/09
to
aladen wrote:

> Most of the Novell documentation
> seems poorly organized and incomplete. I am not necessarily looking for
> eDirectory for Dummies (though it might not be a bad idea) but at least
> some documentation that goes over the basic functionality in a easy to
> understand manner with useful examples.

Check your local bookstore or library for Novell Press' "NDS Basics".


--


Peter
eDirectory Rules!
http://www.DreamLAN.com

Jim Willeke

unread,
Sep 10, 2009, 1:33:04 PM9/10/09
to
Been there done that:
http://ldapwiki.willeke.com/wiki/Migrating%20Passwords%20To%20UniversalPassword

-jim

aladen wrote:
> Hello
>
> I am working on a project to convert our NIS based systems to an LDAP
> based authentication.
>
> I would like to use eDirectory as the base LDAP store. In some ways, I
> know its a bit of overkill, but I like the featureset and relaibility of
> eDir when compared to openldap.
>
> 2 Problems though.
>
> 1: Lack of decent documentation. Is there a really good resource for

> configuring and working with eDir? Most of the Novell documentation


> seems poorly organized and incomplete. I am not necessarily looking for
> eDirectory for Dummies (though it might not be a bad idea) but at least
> some documentation that goes over the basic functionality in a easy to
> understand manner with useful examples.
>

0 new messages