All, We use LDAP authentication against Active Directory on our Linux systems. If a user is not in AD, they don't get into authenticated. We remove all AD authenticated user's shadow entry to keep the shadow expirations from interfering with authentication. However, the "user" type in puppet insists that a user have a shadow entry and re-creates it on every run. This forces us to put another bit of code that removes the shadow entry that Puppet just added.
This gives us the functionality that we need, but it also creates a whole bunch of notices and a flurry of unnecessary activity every time Puppet runs. Anyone have any ideas on who to create and manage users without forcing them to have a shadow entry at all? Mark --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---
