The shadow database has a non-hashable password field for the user. Kerberos is the only way this user can log in. Why wouldn't the behavior of a password change then simply update the Kerberos password, and leave the Unix one alone?
The shadow database has a non-hashable password field for the user. Kerberos is the only way this user can log in. Why wouldn't the behavior of a password change then simply update the Kerberos password, and leave the Unix one alone?