Must a Samba PDC use encrypted passwords?
Luke Kenneth Casson Leighton
lkcl at switchboard.net
Wed Jun 10 17:22:55 GMT 1998
On Wed, 10 Jun 1998, CAE Samba Admin wrote:
> > correct. but you should have only been running "update encrypted" for 3
> > to 7 days _prior_ to enabling "encrypt passwords" therefore this situation
> > should not really occur.
> Well, this is fine and dandy if you are migrating from having
> people connect to non-PDC samba box towards a PDC, but when you are
> starting out in an homogeneous NT enviornment never having had samba
> running for other than test purposes, this is rather pointless as a user
> won't be able to sit down at an NT box and type in there username and
> password to login without having *first* been in the smbpasswd file.
ok, then under _these_ circumstances, in a pre-existing NT network, you
want to use the PWDUMP utility (by jeremy allison) or its NT server admin
/ resource kit equivalent (don't know exactly where this is).
you will be able to obtain the 16 byte NT and LM hashes using either of
these programs, from which a private/smbpasswd file can directly be
More information about the samba-ntdom