syncronize Samba password with Unix(Ldap) password

Agnaldo Freitas afreitas at sei.ba.gov.br
Wed Feb 7 20:29:39 GMT 2007 

Hi,

When i use smbldap-passwd from the prompt it is ok, but when i use /bin/passwd, although the password is changed it ask for the current user password. It should ask just the new password. Why ?!

root at netuno1 ~]# passwd samuel
Changing password for user samuel.
Enter login(LDAP) password:

If i use ldap passwd sync = yes, it shows(after CTRL+ALT+DEL) a message  telling "the passwords are diferent", and when i use:

unix password sync = yes, password program= ...smbldap-passwd and password chat = ...  

... you don't have permission.

obs: 1 -  I am use "pam password crypt" on ldap.conf      (with exop i had problem)

        2 - FDS with Simple Bind and crypt .

smb.conf

        ...  

        ldap passwd sync = no
        unix password sync = yes

        passwd program = /opt/IDEALX/sbin/smbldap-passwd -u %u
        passwd chat = "Changing password for*\nNew password*" %n\n "*Retype new password*" %n\n"
        ...

Log with (pam password change= yes in smb.conf):

I need  this solution to put the server on prodution.root at netuno1 ~]# cat /var/log/samba/coinf14.log |grep samuel|more
  smbldap_search: base => [dc=sei,dc=intranet], filter => [(&(uid=samuel)(objectclass=sambaSamAccount))], scope
=> [2]
  init_sam_from_ldap: Entry found for user: samuel
  pdb_set_username: setting username samuel, was
  pdb_set_nt_username: setting nt username samuel, was
  Looking up login cache for user samuel
  pdb_set_username: setting username samuel, was
  pdb_set_nt_username: setting nt username samuel, was
  Finding user samuel
  Trying _Get_Pwnam(), username as lowercase is samuel
  Get_Pwnam_internals did find user [samuel]!
  chgpasswd: Password change (as_root=Yes) for user: samuel
  smb_pam_start: PAM: Init user: samuel
  smb_pam_start: PAM: Init passed for user: samuel
  smb_pam_chauthtok: PAM: Password Change for User: samuel
  smb_pam_passchange: PAM: Password Change Failed for user samuel!


Log with (pam password change = no in smb.conf):

  smbldap_search: base => [dc=sei,dc=intranet], filter => [(&(uid=samuel)(objectclass=sambaSamAccount))], scope
=> [2]
  init_sam_from_ldap: Entry found for user: samuel
  pdb_set_username: setting username samuel, was
  pdb_set_nt_username: setting nt username samuel, was
  Looking up login cache for user samuel
  pdb_set_username: setting username samuel, was
  pdb_set_nt_username: setting nt username samuel, was
  Finding user samuel
  Trying _Get_Pwnam(), username as lowercase is samuel
  Get_Pwnam_internals did find user [samuel]!
  chgpasswd: Password change (as_root=Yes) for user: samuel
  chat_with_program: Dochild for user samuel (uid=0,gid=0) (as_root = Yes)
  Invoking '/opt/IDEALX/sbin/smbldap-passwd -u samuel' as password change program.
  New password*] received [Changing UNIX password for samuel
  chat_with_program: Child failed to change password: samuel




thanks,

Agnaldo

More information about the samba-technical mailing list