[Freeipa-users] export/import users password between two differents IPA environment
Rob Crittenden
rcritten at redhat.com
Mon May 9 18:33:38 UTC 2016
Alexandre Ellert wrote:
> Hello,
>
> I have a broken IPA environnment with very few users and groups and
> I've setup a fresh new installation.
> I already recreate users and groups and now need to keep old users
> passwords. Is there a way to copy/paste users password between these
> two differents IPA ?
If you had done a migration from the old to new IPA then the passwords
would have come along. The problem you're going to have is that
pre-hashed passwords are only allowed when adding an entry. To be able
to do that you'll need to add some user to passSyncManagersDNs and bind
as that user when loading the passwords (you can pull them from the old
server by binding as Directory Manager).
You almost certainly will want to remove the user in passSyncManagersDNs
once finished.
rob
More information about the Freeipa-users
mailing list