Must a Samba PDC use encrypted passwords?

Luke Kenneth Casson Leighton lkcl at
Wed Jun 10 17:22:55 GMT 1998

On Wed, 10 Jun 1998, CAE Samba Admin wrote:

> > correct.  but you should have only been running "update encrypted" for 3
> > to 7 days _prior_ to enabling "encrypt passwords" therefore this situation
> > should not really occur.
> 	Well, this is fine and dandy if you are migrating from having
> people connect to non-PDC samba box towards a PDC, but when you are
> starting out in an homogeneous NT enviornment never having had samba
> running for other than test purposes, this is rather pointless as a user
> won't be able to sit down at an NT box and type in there username and
> password to login without having *first* been in the smbpasswd file. 

ok, then under _these_ circumstances, in a pre-existing NT network, you
want to use the PWDUMP utility (by jeremy allison) or its NT server admin
/ resource kit equivalent (don't know exactly where this is).

you will be able to obtain the 16 byte NT and LM hashes using either of
these programs, from which a private/smbpasswd file can directly be


More information about the samba-ntdom mailing list