[Samba] passwd expire issues / shadow

Andrew Bartlett abartlet at pcug.org.au
Sat Feb 2 18:24:08 GMT 2002

tdavis at birddog.com wrote:
> Hello!
> I want to be able to force my users to change passwords every so often.
>     Does samba honor any shadow settings like this?  If so, mind
> pointing me in the right direction or giving me any advice.  I will
> ultimately want to get this information out of ldap which the pam module
> should take care of (hopefully).

Set Samba to 'obey pam restrictions = yes' and setup the
/etc/pam.d/samba file.

Then Samba will (even for encrypted logins) check with the 'account'
module listed.

Unfortunetly even with things like LDAP SAM backend, samba only honers
this via PAM.

Andrew Bartlett

Andrew Bartlett                                 abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team  abartlet at samba.org
Student Network Administrator, Hawker College   abartlet at hawkerc.net
http://samba.org     http://build.samba.org     http://hawkerc.net

More information about the samba mailing list