Checklist: Setting up Password Synchronization for use with standalone UNIX hosts
Applies To: Windows Server 2003 R2
Checklist: Setting up Password Synchronization for use with standalone UNIX hosts
Configuring Windows systems
Step | Reference |
---|---|
Read about Password Synchronization. |
|
Log on as a member of the Administrators group. |
|
Install Password Synchronization on the appropriate Windows-based computers. If the passwords of local accounts on a server are to be synchronized, install Password Synchronization on the server. If Windows domain passwords are to be synchronized, install Password Synchronization on all domain controllers. |
|
Change the encryption key. |
|
Change other settings, as needed. |
|
Add UNIX computers with which passwords will be synchronized. If you want to use nondefault values, specify values for the port number, encryption key, or both. |
|
Ensure that the Password Synchronization configurations on all domain controllers in the domain are identical. |
|
Configuring UNIX systems
Step | Reference |
---|---|
Install and configure the Password Synchronization single sign-on daemon (SSOD) on all UNIX computers with which passwords will be synchronized. Be sure to change the default encryption key in the sso.conf file to match the Password Synchronization encryption key set in previous steps before copying it to the UNIX computers. |
|
Specify which users will and will not be allowed to synchronize passwords. |
|
Start the Password Synchronization daemon. |
|
Install and configure the Password Synchronization pluggable authentication module (PAM) on all UNIX computers from which password changes are to be synchronized with Windows passwords. |
Configure UNIX Computers for UNIX-to-Windows Synchronization |