Samba vs PAM (authentication against NDS)

Marek Les marek at
Fri Mar 17 12:46:51 GMT 2000

> Samba will authenticate against the smbpasswd file when the parameter
> "encrypt passwords" is set to true in the smb.conf file. In order to use
> a PAM based password, you are going to have to disable the encrypt
> passwords parameter. This means, if you are using NT 4.0 SP3 or greater
> or a more recent release of Win95 (I can't remember exactly which) or
> any release of Win98, that you will have to enable clear text passwords
> from the desktop with a registry hack. See the Win95.txt and WinNT.txt
> files in the documents tree in the Samba directory for details.

Yes but that's what I really don't want to do.. This way it would 
send plaintext NDS passwords over the net.. with our network topology 
this is unacceptable security measure.. :(

Isn't there another way? It shouldn't be so difficult !

Thanks anyway..

> Marek Les wrote:

> > I wonder, in which way Samba supports PAM? I downloaded
> > samba-2.0.6-19991110 and there I found in changelog it's compiled
> > with --with-pam..
> > 
> > My desire is to authenticate Samba users against Novell NDS. I
> > managed to do this (under Linux) with many programs but Samba somehow
> > resists :)
> > 
> > I put something like this into /etc/pam.d/samba :
> > 
> > auth       required     /lib/security/ use_first_pass
> > server=some_server
> > 
> > But Samba still authenticates against smbpasswd :( .. one more
> > question - is there a way to completely disable the need of smbpasswd
> > if I want to authenticate _only_ against Novell NDS ?

     Marek "MaX" Leš

More information about the samba mailing list