[Samba] Samba <-> LDAP auth

Bradley W. Langhorst brad at langhorst.com
Wed Oct 30 17:01:01 GMT 2002

On Wed, 2002-10-30 at 10:03, Mihail S. Dorofeev wrote:
> > The QUESTION IS : IS THERE _A_ WAY TO USE userPassword attr 
dunno - it's a BAD idea

>for Samba authentication ??
> OR SYNC userPassword and ntPassword?
you can sync userPassword and ntPassword
set up pam to to change the smb password
set up samba to change the unix password 
this is what i do and it works just fine.

> What i did is i ran smbpasswd, looked at the password file,  copied the string containing the encrypted password and 
> inserted this value into the directory->ntPassword filed. However it didnt match :(
this can't work - the userPassword is MD5 or crypt hashed, the nt and lm
Passwords use a different hash.

> Maybe, there is a way to sync ntPassword and userPassword (taking care of different encryption scheme)?
> This would be ONLY useful if done by LDAP server means......
While it would be great for the ldapserver to just handle the update
automatically. I don't think it's a significant advantage when you only
have a few ways to change passwords.



More information about the samba mailing list