Retrieving shadow Information - Working With Oracle® Solaris 11.2 Directory and Naming Services: DNS and NIS

Working With Oracle^® Solaris 11.2 Directory and Naming Services: DNS and NIS

Exit Print View

» ...Documentation Home » Oracle Solaris 11.2 Information Library » Working With Oracle^® Solaris ... » Setting Up Oracle Solaris Active Directory Clients » How the nss_ad Naming Service Module Retrieves ... » Retrieving shadow Information

Updated: July 2014

Working With Oracle^® Solaris 11.2 Directory and Naming Services: DNS and NIS

Document Information

Using This Documentation

Chapter 1 About Naming and Directory Services

Chapter 2 About the Name Service Switch

Chapter 3 Managing Domain Name System

Chapter 4 Setting Up Oracle Solaris Active Directory Clients

Overview of the nss_ad Naming Service Module

Password Updates

How the nss_ad Naming Service Module Retrieves Data From AD

Retrieving passwd Information

Retrieving shadow Information

Retrieving group Information

Chapter 5 About the Network Information Service

Chapter 6 Setting Up and Configuring Network Information Service

Chapter 7 Administering Network Information Service

Chapter 8 Troubleshooting Network Information System

Language:

Retrieving `shadow` Information

The following syntax shows the proper form of a shadow entry:

username:password:lastchg:min:max:warn:inactive:expire:flag

See the shadow(4) man page for more information.

The nss_ad module retrieves shadow information from AD as follows:

username – Field uses the value of the samAccountName AD attribute and is qualified by the domain name in which the object resides, for example, johnd@example.com.
password – Field uses the value of *NP* because the user password is not available in the AD object.

The rest of the shadow fields are left empty because shadow fields are irrelevant with AD and Kerberos v5.

Copyright © 2002, 2014, Oracle and/or its affiliates. All rights reserved. Legal Notices