The system key will only work to set up one user (usually root).
For ordinary users, you can use synchronization to copy the
group/shadow/passwd files, but that's usually a bad idea because it also
clobbers the root password, and it requires resyncing (or even rebooting
compute nodes) every time a user changes passwords or you add a user.
You best bet is actually to not maintain users in the group/shadow/passwd
files at all, but use LDAP.
Depending on your situation, you may be able to use an existing LDAP server
in your organization, such as Active Directory. Or you may need to set up
your own on the management node. The following document is outdated, but
still reasonably close to reality.
https://sourceforge.net/p/xcat/wiki/Setting_up_LDAP_in_xCAT/
One pitfall you generally have to watch out for: make sure that the same
user always has the same user ID, group membership etc. across all nodes.
Copying the group/shadow/passwd files will do that for you, and LDAP will
if it is set up correctly (with the posixAccount schema for each user, and
the uidNumber etc. populated).
_______________________________________________________________________
Kevin Keane | Systems Architect | University of San Diego ITS |
kke...@sandiego.edu
Maher Hall, 192 |5998 Alcalá Park | San Diego, CA 92110-2492 | 619.260.6859
*REMEMBER! **No one from IT at USD will ever ask to confirm or supply your
password*.
These messages are an attempt to steal your username and password. Please
do not reply to, click the links within, or open the attachments of these
messages. Delete them!
On Mon, Jun 18, 2018 at 9:55 AM, Daniel Hilst Selli <
dan...@versatushpc.com.br> wrote:
> Hi!
>
> I had a problem where I couldn't login to a computing node with the
> password
> contained at system key of passwd table. I search in the internet for
> options on
> setting password for xcat.
>
> The documentation says
>
> chtab key=system passwd.username=root passwd.password=abc123
>
> But I don't really understand how this password would get to /etc/shadow
> of the
> computing nodes. Changing the password and reboot stateless node doesn't
> has
> effect, the node keep using the old password and passwd table and nodes
> /etc/shadow are out of sync.
>
> I saw people on internet synchronizing /etc/{group,shadow,passwd} from
> management node, but if this is the case, what is the point of the system
> key on
> passwd table?
>
> Any suggestion on how to handle computing node users will be appreciated!
>
>
> Regards,
>
> ------------------------------------------------------------
> ------------------
> Check out the vibrant tech community on one of the world's most
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
> _______________________________________________
> xCAT-user mailing list
> xCAT-user@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/xcat-user
>
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
xCAT-user mailing list
xCAT-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/xcat-user
