Informix

 View Only

  • 1.  Migrating users from OS to DB

    Posted Mon March 27, 2023 11:55 AM

    Is it possible to migrate >1800 Linux users and their OS passwords to the database so the will be internally authenticated?
    It is basically easy to create all the users in the DB but the password is more tricky I guess.

    Best regards,

    -Snorri



    ------------------------------
    Snorri Bergmann
    ------------------------------


  • 2.  RE: Migrating users from OS to DB

    IBM Champion
    Posted Tue March 28, 2023 07:11 AM

    You probably mean "and their encrypted OS passwords"?  Which pretty much rules out such possibility - OS and IDS encryption had to be identical for this to work which they, pretty certainly, aren't.

    Nice idea, though... i.e. an RFE, alongside improved IDS level user administration?

    BR,
     Andreas



    ------------------------------
    Andreas Legner
    ------------------------------

    Original Message


  • 3.  RE: Migrating users from OS to DB

    IBM Champion
    Posted Tue March 28, 2023 08:06 AM
    Hi,

    the only way this would be possible from my point of view is to copy the hashed passwords (if they are locally stored in /etc/shadow)
    and re-implement the OS password check, possibly in an application routine or in a natively (C or maybe Java) implemented stored procedure
    because the crypt () function would be needed which is not part of any SPL.
    Also, for modified passwords (after the conversion), you would need to implement the hashing. 
    (or use the OS password only as fallback if a new one has not been created using a new encryption logic yet).


    Marcus Haarmann



    Original Message