[Samba] Redhat 7.2 and pam password change

Charlie Grosvenor charlie at grosvenors.eclipse.co.uk
Sat Feb 2 08:57:06 GMT 2002

	I am trying to get samba to change unix passwords using pam.I am using
redhat 7.2 with samba 2.2.2. My smb.conf file looks like this:

# Global parameters
	workgroup = testwg
	netbios name = SERVER1
	server string = Samba Server
	interfaces = eth0
	bind interfaces only = Yes
	encrypt passwords = Yes
	update encrypted = Yes
	obey pam restrictions = Yes
	pam password change = Yes
	passwd program = /bin/passwd %u
	passwd chat = *password* \n *UNIX* %n\n *UNIX* %n\n *success*
	unix password sync = Yes
	log level = 2
	log file = /var/log/samba/%m.log
	max log size = 0
	time server = Yes
	socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
	domain admin group = @adm
	domain guest group = @guest
	add user script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false
-M %u
	logon script = logon.bat
	logon drive = n:
	domain logons = Yes
	os level = 64
	preferred master = True
	domain master = True
	dns proxy = No
	wins support = Yes
	message command = /bin/mail -s 'message from %f on %m' root < %s; rm %s
	admin users = @ntadmin, at adm
	printer admin = @ntadmin, at adm
	printing = lprng

in the /etc/pam.d directory i have a file called samba that looks like

auth       required	pam_nologin.so
auth       required	pam_stack.so service=system-auth
account    required	pam_stack.so service=system-auth
session    required	pam_stack.so service=system-auth
password   required	pam_stack.so service=system-auth

when ever i try and change a users password i get the following in the
log file:

[2002/02/02 16:31:30, 2] passdb/pampass.c:smb_pam_chauthtok(681)
  PAM: unable to obtain the new authentication token - is password to
[2002/02/02 16:31:30, 2] passdb/pampass.c:smb_pam_error_handler(73)
  smb_pam_error_handler: PAM: Password Change Failed : Authentication
token manipulation error
[2002/02/02 16:31:30, 0] passdb/pampass.c:smb_pam_passchange(866)
  smb_pam_passchange: PAM: Password Change Failed for user admin!

Does anybody know why this is happening? how i can make it work? i have
tried lots of different passwords so the password is not too weak.

Thank you


More information about the samba mailing list