Checklist: Setting up Password Synchronization for use with standalone UNIX hosts

Configuring Windows systems
Step Reference
Read about Password Synchronization. Concepts
Log on as a member of the Administrators group.
Install Password Synchronization on the appropriate Windows computers. If the passwords of local accounts on a server are to be synchronized, install Password Synchronization on the server. If Windows NT domain passwords are to be synchronized, install Password Synchronization on the primary domain controller of the domain. If Windows 2000 domain passwords are to be synchronized, install Password Synchronization on all domain controllers. To install Password Synchronization
Change the encryption key. To set the default encryption key
Change other settings, as needed. Configure Password Synchronization
Add UNIX computers with which passwords will be synchronized. If you want to use nondefault values, specify values for the port number, encryption key, or both. To add and remove computers for synchronization
Ensure that the Password Synchronization configurations on all domain controllers in the domain are identical.
 
Configuring UNIX systems
Step Reference
Install and configure the Password Synchronization single sign-on daemon (SSOD) on all UNIX computers with which passwords will be synchronized. Be sure to change the default encryption key in the sso.conf file to match the Password Synchronization encryption key set in previous steps before copying it to the UNIX computers. To install the Password Synchronization daemon
Specify which users will and will not be allowed to synchronize passwords. Controlling Password Synchronization for user accounts
Start the Password Synchronization daemon. To to start the Password Synchronization daemon
Install and configure the Password Synchronization pluggable authentication module (PAM) on all UNIX computers from which password changes are to be synchronized with Windows passwords. Configure UNIX computers for UNIX-to-Windows synchronization