ridingthewind
2009-06-18 15:54:06 UTC
Info: Primary domain controller: pepdc15 - Windows Server 2008 SP2, IDMU, the
primary NIS master with just a few basic maps (passwd, shadow, group
and hosts) DC for domain DN.
Secondary domain controller: pepdc26 - Windows Server 2008 SP2, IDMU,
configured as a secondary nis server. Also DN domain.
Not using password sync.
Have unix box1 configured as slave nis server to pepdc15. Uses nis for
password and group (basically for authentication). ypwhich = pepdc26.
Have unix box2, a ypclient, configured to use nis for password and group,
ypwhich = pepdc15.
Windows pc's all on domain DN.
Problem:
Using an account on the domain, lets call it DN\testdc, I change
the password directly on pepdc15 using Active Directory Users and Computers,
Reset password... Then I login into unix box2 as testdc and it reflects
the changed password almost immediately.
Next I login to a windows pc as DN\testdc and change the account password
there. The domain controller takes the change okay since I can login to
another windows pc with the new password just fine. However when I try to
login to unix box2 or box1, both take the previous password not the new
one. I waited an hour and still no change. I did a force push on pepdc15
and tried to login to unix box1 again and still it does not have the new
password.
Doing a manual ypxfr on unix box1 says the maps are all up to date.
How come the password change is not getting to NIS?
thanks in advance
primary NIS master with just a few basic maps (passwd, shadow, group
and hosts) DC for domain DN.
Secondary domain controller: pepdc26 - Windows Server 2008 SP2, IDMU,
configured as a secondary nis server. Also DN domain.
Not using password sync.
Have unix box1 configured as slave nis server to pepdc15. Uses nis for
password and group (basically for authentication). ypwhich = pepdc26.
Have unix box2, a ypclient, configured to use nis for password and group,
ypwhich = pepdc15.
Windows pc's all on domain DN.
Problem:
Using an account on the domain, lets call it DN\testdc, I change
the password directly on pepdc15 using Active Directory Users and Computers,
Reset password... Then I login into unix box2 as testdc and it reflects
the changed password almost immediately.
Next I login to a windows pc as DN\testdc and change the account password
there. The domain controller takes the change okay since I can login to
another windows pc with the new password just fine. However when I try to
login to unix box2 or box1, both take the previous password not the new
one. I waited an hour and still no change. I did a force push on pepdc15
and tried to login to unix box1 again and still it does not have the new
password.
Doing a manual ypxfr on unix box1 says the maps are all up to date.
How come the password change is not getting to NIS?
thanks in advance