Hi Sunny, might go into a totally different direction than what you actually anticipated, but you could use something else to do your authentication, like Kerberos (e.g. AD) or RADIUS (e.g. Cisco ACS). Probably not much more difficult to get a properly secure LDAP server in place which contains the hashed passwords ...
We only use puppet to roll out panic passwords for emergency accounts that are not supposed to be overwritten. Just my 2 cents Stephan On Nov 15, 10:22 am, Sunny <jaisinghani.su...@gmail.com> wrote: > Hello, > > I am using accounts::user for managing user accounts on my > infrastructure. > I know that we can set passwords in manifests for the users we are > managing. > > I would like to know if there is way that a user which does not have > access to the puppet master, but has access to the puppet clients, can > change his password on the client and update the manifests on the > master. > This is something like LDAP, where each user can change his/her > password from any LDAP client to update the LDAP database. > > I want these users to change their passwords at will and somehow > puppet finds that out and updates its manifests. > > Thanks > Sunny -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
