Forum: Cfengine Help Subject: Re: 3.0.2 too old? Author: pettai Link to topic: https://cfengine.com/forum/read.php?3,20392,20401#msg-20401
neilhwatson Wrote: ------------------------------------------------------- > I would not recommend this method of user > management. A dedicated LDAP service is the > better choice. We only want to commission/decommission user+sysadmin accounts across all servers, and we don't want to tie them to a networked service as LDAP. We don't have an uniformed environment so useradd/usermod is the fastest/simplest approach for getting the job done. (and since we don't have a LDAP backend with fixed uidNumber's, there is no need for syncing those across all systems, even if that is more structured). > Using Cfengine you might have more > success editing the passwd and shadow files > directly. Well, I need to something similar (logics) then anyway, since NetBSD doesn't handle user-accounts as Solaris and Linux (Ubuntu) do. > See these examples: > > http://www.cfengine.org/manuals/cf3-solutions.html > #Manage-users Right, my example was based on recipe #2 from those Manage-users recipes. I was mostly looking for comments if my "code" was logically wrong, or if it should work but with a newer release of cfengine (cf-promises -f ...cf doesn't complain) > http://www.cfengine.org/manuals/cf3-solutions.html > #Distribute-root-passwords Re, /P _______________________________________________ Help-cfengine mailing list Help-cfengine@cfengine.org https://cfengine.org/mailman/listinfo/help-cfengine
