On Wednesday, July 16, 2014 9:24:35 AM UTC-5, Betsy Schwartz wrote: > > Thank you! pam access may well be the right direction to go for us. > > > I'm still sort of boggled that nobody seems to be using puppet for > /etc/passwd. That always seemed to us to be the *first* thing we'd want to > get under centralized control. >
Of course people use Puppet to manage /etc/passwd. That's what the built-in User resource type is for (on systems that use /etc/passwd for their user database). Puppet has had that forever. The accounts module your guy was trying to use is probably trying to manage user home directories and/or their contents, not anticipating that multiple users would have the same home directory. In fact, that could be ok for managing ordinary users, but it should be avoided for system and service accounts anyway. There may be a way to make it behave better for system accounts (extra parameters to set, for example). Otherwise, ordinary User resources very likely can do everything you need to do for system accounts. John -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/154db3bc-85d1-4564-89ef-3bf1a95fa1a4%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
