NT/UNIX password synchronization, using LDAP for pasword store.
Gerald Carter
cartegw at Eng.Auburn.EDU
Sat Feb 19 03:39:09 GMT 2000
Luke Howard wrote:
>
> Good question. I don't expect that SAMBA gets the new password in the
> clear, but I may be wrong; this is just a guess. If it doesn't, then
> there's no way SAMBA can update the crypt() hashed password in the
> userPassword attribute. One soultion then would be to modify the
> ldappasswd program that comes with OpenLDAP to update the NTLM hashes.
This is fundamentally the same issue as the unix passwd sync
parameter. The new password is receiv4ed in the clear (actually
not, but it is decrytable). The old password is not available.
You can probably just use a custom "password program" setting
and get it to work.
Cheers,
jerry
________________________________________________________________________
Gerald ( Jerry ) Carter
Engineering Network Services Auburn University
jerry at eng.auburn.edu http://www.eng.auburn.edu/users/cartegw
"...a hundred billion castaways looking for a home."
- Sting "Message in a Bottle" ( 1979 )
More information about the samba-ntdom
mailing list