Forum: Cfengine Help Subject: Re: I think I have created a solution for keeping admin passwords in sync on AIX Author: matter Link to topic: https://cfengine.com/forum/read.php?3,20974,20983#msg-20983
Impressive amount of work, however, I think you may be overcomplicating it. I have coded for a similar situation. You have most of the pieces already. I have one master machine that I manually update the passwords, and all the slave machines would update the passwords from that single machine. I don't bother to add a tripwire for changes, just let cfengine do what it needs to do. CFengine will know if it needs to modify the slaves or not. For the ADMCHG, I just wipe out the whole line, AIX doesn't care if you have the flag line or not. Basically it boils down to edit_line with sections. It is even easier if you can sync all the password instead of just the admin passwords. If you can't do that, copy the whole /etc/security/password file and do a edit_line to strip out just the ids your are looking for to make your own template on the fly. _______________________________________________ Help-cfengine mailing list Help-cfengine@cfengine.org https://cfengine.org/mailman/listinfo/help-cfengine
