Jump to content

Recommended Posts

Posted

Updated for Passwordstate 8 - 1st November 2017

 

 

Step 1: Ensure you have prerequisites set up for your web server and hosts, as per this forum post (Once off process)

Step 2: Add new Password Record configured as follows:

 

Screen 1: Ensure you configure the below 5 options correctly and enter in the password for the account.  If you configure an Expiry Date it will automatically change the password when that date is reached.

2016-08-01_14-50-05.png

 

Screen 2: 

  • Confirm you select the appropriate Reset Linux Password script.
  • Determine whether or not to use a Privileged Account and select the appropriate option. If you do not use a Privileged Account, Passwordstate will SSH to the host using the currently active password for the user (in this example marlee), and perform the reset.  Otherwise it will connect to the host with the Privileged Account username and password, and then perform the reset for the user account (marlee)
  • Confirm the Password Reset Schedule is enabled if you want the password to automatically change when the Expiry Date occurs

2016-08-01_14-50-26.png

 

 

Screen 3: Confirm the Validate Password for Linux Account validation script is selected

2017-11-01_14-27-51.png

 

Some More notes about Linux Resets:

 

In some environments, and and/or Linux distributions, SSH'ing in as root is disabled.  To ensure you can perform a successful heartbeat of the root account ie check the password record is in sync with the root password on the machine, then you may need to tick the following option - This will SSH in as your Privileged Account, and perform a password validation to the root account. In conjunction with the setting below, you will need to configure your sudoers file on each of your machine following the Section 14 of this Document:  https://www.clickstudios.com.au/downloads/version8/Password_Discovery_Reset_and_Validation_Requirements.pdf

 

2017-11-01_14-27-50.png

 

 

 

Information About the Privileged Account:

With Linux it is possible to SSH in using a Public/Private key system to authenticate.  If you have this system in place, you can assign the Private key to your Privileged Account, and it will use the key and the secret Passphrase to establish an SSH connection to the machine:

 

2017-11-01_14-44-08.png

 

 

 

 

 

 

 

 

 

 

 

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...