On Sun, Jan 29, 2012 at 07:26:13AM -0800, Olivier wrote: > Hello > > in James Loope's book (called Managing Infrastructure with Puppet), he > writes on page23: "The password hash can either be mined out of a > shadow file or generated with the mkpasswd utility." My question is: > how can the hash field be mined out of the shadow field. I tried to > use the generate function to execute the following command: > grep username /etc/shadow | cut -d: -f2 > but that did not work. It seems that the generate function does not > like the | pipe command. > > My question is: how can I extract that hash value and store it in a > Puppet variable? > > Thank you >
The question is what are you trying to accomplish?
The generate function executes on your puppet master which is most
certainly not what you want.
If you want to have the root passwordhash on your node to be available
as a variable you have write a custom fact [1] but be aware of the
possible security implications.
If you just want to create a useraccount and set a login password or you
want to make sure that a certain user has a certain login password you
can already do so with the user type [2]
like
user { 'root':
ensure => present,
uid => 0,
password => 'my hashed password',
}
[1] http://docs.puppetlabs.com/guides/custom_facts.html
[2] http://docs.puppetlabs.com/references/2.7.9/type.html#user
-Stefan
pgpHHeUPB8zbS.pgp
Description: PGP signature
