SMB bulk add utility
Christopher R. Hertel
crh at ubiqx.mn.org
Tue Sep 18 02:52:59 GMT 2007
Andrew Bartlett wrote:
> On Mon, 2007-09-17 at 20:21 -0500, Christopher R. Hertel wrote:
>> Peter,
>>
>> The raw password is needed in order to generate the hashes used for Windows
>> authentication. If kerberos is supported then there may be an option, but
>> for NTLM or NTLMv2 authentication you'll need the NTLM hash. If that's not
>> already in eDirectory, then you'll need to generate it and it can only be
>> generated from the original password.
>>
>> That's the nature of security systems. You shouldn't be able to get the raw
>> password out of the system. It should only ever go in (and be destroyed
>> after it is used).
>
> Happily (?) eDirectory stores a 'universal password' (being the
> plaintext), which Samba can obtain, if you have recent versions of both.
Ah. Well... That's cool, I guess.
So what's the trick for doing the mass enable he originally asked about?
Chris -)-----
--
"Implementing CIFS - the Common Internet FileSystem" ISBN: 013047116X
Samba Team -- http://www.samba.org/ -)----- Christopher R. Hertel
jCIFS Team -- http://jcifs.samba.org/ -)----- ubiqx development, uninq.
ubiqx Team -- http://www.ubiqx.org/ -)----- crh at ubiqx.mn.org
OnLineBook -- http://ubiqx.org/cifs/ -)----- crh at ubiqx.org
More information about the samba-technical
mailing list