sambaPasswordHistory LDAP Attrinbute

Jeremy Allison jra at
Fri Nov 5 19:45:43 GMT 2004

On Fri, Nov 05, 2004 at 02:36:26PM -0500, Jared Rich wrote:
> That does not seem to work for me.
> For a password of "password", this is what shows in sambaPasswordHistory:
> 8E36265C3B44B640CCB365040DE68E5A 4BF09D61C23AB4A0CC9D1866E1C69191
> I added the space between the 2 16 byte values for clarity.  I got the MD4
> hash of the unicode version of "password" by running this:
> mkntpwd -N password
> that retuned:  8846F7EAEE8FB117AD06BDD830B7586C
> so, if I run: mkntpwd -N
> 8E36265C3B44B640CCB365040DE68E5A8846F7EAEE8FB117AD06BDD830B7586C
> which is mkntpwd -N [1st 16 bytes in sambaPasswordHistory+value from mkntpwd
> -N password]
> I should get the 2nd 16 byte value in sambaPasswordHistory...  but I don't.
> was that supposed to say MD5 in your last post?? I did tried both MD4 and MD5
> just to check, but nither gave me the right result.
> What am I doing wrong here?

It's MD5, not MD4. I don't know what you're doing wrong. Look at the
code in :

check_passwd_history() in smbd/chgpasswd.c


More information about the samba-technical mailing list