[Samba] PAM Module for SMB-LDAP

Buchan Milne bgmilne at cae.co.za
Thu Jan 30 18:46:49 GMT 2003


> Date: 30 Jan 2003 10:40:50 -0500
> From: "Bradley W. Langhorst" <brad at langhorst.com>
> To: Matthias Eichler <me at ame.de>
> Cc: samba at lists.samba.org
> Subject: Re: [Samba] PAM Module for SMB-LDAP
> Message: 18
> On Thu, 2003-01-30 at 05:28, Matthias Eichler wrote:
> 
>>> And with these settings you can really change the lmpassword and
>>> ntpassword attributes in LDAP when doing a passwd under UNIX?!?
> 
> yes - i am using samba3a21 but i'm pretty sure this worked with 2.2.6
> when i last tried the 2.2 branch

It really has no relationship to which samba you're running, since this
is when changing your password on a unix machine which is not a DC, so
you can't (AFAIK) use pam_smbpass, and the machine may have no samba
components installed on it anyway.

AFIAK, the only way around this is a hacked pam_ldap which changes
ntpasswd and lmpasswd, there is one around somewhere ...

The other option is to make a passwd script which calls smbpasswd -r
<name of pdc>, and rename the old passwd binary.

Buchan

-- 
|--------------Another happy Mandrake Club member--------------|
Buchan Milne                Mechanical Engineer, Network Manager
Cellphone * Work            +27 82 472 2231 * +27 21 8828820x121
Stellenbosch Automotive Engineering         http://www.cae.co.za
GPG Key                   http://ranger.dnsalias.com/bgmilne.asc
1024D/60D204A7 2919 E232 5610 A038 87B1 72D6 AC92 BA50 60D2 04A7



More information about the samba mailing list