REALLY NEED SOME QUICK HELP! -PLEASE!!
Simo Sorce
simo.sorce at polimi.it
Wed Sep 27 16:41:11 GMT 2000
Rafa³ Szcze¶niak wrote:
>
> Does your /bin/passwd has any builtin filter checking
> password "quality" ?
>
> Also, sample password chat debug log could be helpful...
>
> Rafa³
>
> Adam.Propeck at fallon.com
> Wys³ane przez: samba-ntdom-admin at us4.samba.org
> 00-09-27 08:29
>
>
> Do: samba-ntdom at us4.samba.org, samba-ntdom-admin at us4.samba.org
> DW:
> Temat: REALLY NEED SOME QUICK HELP! -PLEASE!!
>
> I submitted this problem before but haven't received a response. There
> were promises made as to performance of the SAMBA server, and my team is
> hard pressed to meet our deadlines. I really need some help here guys
> (and
> gals). Please let me know ASAP as I am currently working on our 2
> production servers now and can't wait! THANKS in advance, ADAM PROPECK
> -----------------------------------------------------------------------------------------------------------
> *************Previous Message*****************
> -----------------------------------------------------------------------------------------------------------
> I am running SAMBA 2.0.7 on a Solaris 2.7 Box, and want to continue to
> have
> an NT4 PDC. I am having difficulty with password sync from NT to the
> Solaris side of things. I would like to have users on Win98/NT
> workstations be able to change their passwords on the NT side through
> CTRL-ALT-DEL, Change Password, and then get SAMBA and our /etc/passwd to
> sync to the new password. How can I go about doing this?
>
> Thanks,
> Adam Propeck
> Systems Administrator-Fallon
> adam.propeck at fallon.com
> 612-282-3458
>
> ----------------------------------------------------------------
> Below is an edited copy of my conf file.
> ----------------------------------------------------------------
>
> # Samba config file created using SWAT
> # from host.com (xxx.xxx.xxx.xxx)
> # Date: 2000/09/26 11:59:36
>
> # Global parameters
> [global]
> workgroup = FM
> netbios name = FMSAMBA
> server string = SAMBA SERVER
> security = DOMAIN
> encrypt passwords = Yes
> update encrypted = Yes
> min password length = 4
> password server = NTPDC <---- Actual name of PDC is here
> passwd program = /bin/passwd %u
> passwd chat debug = Yes
> username map = /etc/user.map
> unix password sync = Yes
> debug hires timestamp = Yes
> debug pid = Yes
> debug uid = Yes
> logon home =
> os level = 0
> local master = No
> wins server = xxx.xxx.xxx.xxx
> hide files = /Network Trash
> Folder/TheFindByContentFolder/TheVolumeSettingsFolder/
>
> [Creative]
> path = /data/fmsamba/
>
> [homes]
> comment = Home Directory
> path = /data/homes/%u
> writeable = Yes
> browseable = No
Men you can't use Password sync with encrypted passwords cause NT will
not send the password in clear but only a one way encoded equivalent
hash.
So samba can't update passwd because there's not any way to convert a
NTLM hash into a crypt or MD5 entry!!
The only way is to set a windows regietry(check archives for it) to set
clear/text passwords, but this will not work in a domain!
--
Simo Sorce - Integrazione Sistemi Unix/Windows - Politecnico di Milano
E-mail: simo.sorce at polimi.it
Tel.int: 02 2399 2425 - Fax.int. 02 2399 2451
-----------------------------------------------------------------
Be happy, use Linux!
More information about the samba-ntdom
mailing list