The NIS driver supports bidirectional synchronization of distribution passwords. The password synchronization for the driver must be set up using iManager. For more information, refer to the DirXML Administration guide.
On the Subscriber channel, the Add User event in eDirectory sets the default password in UNIX. Also, it sets a default distribution password for that user. There are two DirXML script rules which govern this, they can be changed to have any default password in UNIX or distribution password. Further, if you set the universal password for a user using the set the universal password task in iManager, the password for that user will change in UNIX (this overwrites the earlier UNIX password). Therefore any change in the distribution password will change the password in UNIX. If the Authpassword synchronization option is set to on and the Universal password is not configured, the appropriate Authpassword value is set in UNIX when the Authpassword attribute in eDirectory changes for the user.
On the Publisher channel, when users are created in UNIX, the password is not captured by the driver until the password is set/changed for the first time. The default distribution password can be configured in DirXML scripts rules so that they can be set as distribution password when password in clear-text is not available from UNIX. Every modify password event in UNIX results in the change of distribution password of that user. If the Authpassword synchronization is enabled and a password is changed in UNIX, the Authpassword attribute will be updated with MD5 and Crypt hash of the password.