password synchronization - again!

[David Bannon]

At 10:42 AM 29/08/2000 +0000, Jenny Fox wrote:
>Hello.
>
>...heterogeneous network of unix, macintosh, and NT machines.  I am using a
>linux/samba server for home directories, which is also running
>netatalk.  The problem is with password synchronization -
> ..... if someone changes their password from a unix
>box or a macintosh, their NT password is not changed. 

Have you thought about using pam_smb or pam_ntdom and doing away with
passwords in /etc/ altogether. Samba then talks only to ~/smbpasswd,
netatalk is pam aware, authentication looks like this :
netatalk->pam->pam_smb->[smb server, ie samba or NT]. 

have a look at http://bioserve.latrobe.edu.au/samba/extras.html


 I have a wide
>spectrum of users - from those who have never encountered a computer
>before to computer professionals, and I would like to make this as easy
>as possible for everyone.  What I would really like is that if someone
>changed their password from any machine, it has been changed for all
>platforms, which means that somehow I have to synchronize the unix
>password file and the NT SAM database.
>
>I read in the documentation that samba cannot act as a BDC.  Would
>making the linux server the PDC solve this problem?  I'm running a
>pretty extensive NT network with SMS, IIS, etc... so I wonder what kinds
>of problems I would have if my samba server were the PDC.
>
>Does anyone else have any experience with this?  I am running 2.0.7 on
>RH 6.2.  Thank you for any suggestions.
>
>--jenny
>
>Jennifer Fox
>Network Administrator
>Amundsen-Scott South Pole Station, Antarctica
>
>
>
------------------------------------------------------------
David Bannon                      D.Bannon at latrobe.edu.au
School of Biochemistry            Phone 61 03 9479 2197
La Trobe University, Plenty Rd,   Fax   61 03 9479 2467
Bundoora, Vic, Australia, 3083    http://bioserve.latrobe.edu.au
------------------------------------------------------------
..... Humpty Dumpty was pushed !