Instead of modifying password entries directly, you can map local Unix users to Active Directory accounts using map files.
To configure a user mapping file
- Run the following command as root to enable local map files:
vastool configure vas vas_auth user-map-files /etc/user-map
Note: This example configures Safeguard Authentication Services to use /etc/user-map for user mappings. You can specify any filename.
- Add user mappings to the map file.
The format is <local user name>:<sAMAccountName@domain>.
If you want to map a local user named pspencer to the Active Directory account for pspencer@example.com, add the following line to the file:
pspencer:pspencer@example.com