[Samba] PDC/Roving Profiles/and Password Encryption

Dan Kador shoutinwhispers at yahoo.com
Wed Jun 4 14:50:12 GMT 2003

So you're saying that it IS possible for my setup to work?  I'll definitely give those guides a read through and maybe I'll be able to work through them. 
I want to be sure I understand you correctly, though - I can enable password encryption on the samba server, keep password encryption OFF on the clients, and use the LDAP database and migrate the passwords stored there to the samba server?

Buchan Milne <bgmilne at cae.co.za> wrote:

Hash: SHA1

No, no Windows clients will join a domain with clear-text passwords.
Not totally true, you can have samba authenticate against the NT
password has stored in LDAP, and use synchronisation tools to keep the
unix hash and the NT hash in sync.
Well, you won't be able to join new machines to the domain either.

See http://www.mandrakesecure.net/en/docs/samba-pdc.php for details in
getting samba running on an LDAP backend the easy way, and
http://www.mandrakesecure.net/en/docs/samba-ldap-advanced.php (not
totally complete yet) for adding in some cool features.


- --
|--------------Another happy Mandrake Club member--------------|
Buchan Milne Mechanical Engineer, Network Manager
Cellphone * Work +27 82 472 2231 * +27 21 8828820x202
Stellenbosch Automotive Engineering http://www.cae.co.za
GPG Key http://ranger.dnsalias.com/bgmilne.asc
1024D/60D204A7 2919 E232 5610 A038 87B1 72D6 AC92 BA50 60D2 04A7
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org


Please click on http://www.cae.co.za/disclaimer.htm to read our
e-mail disclaimer or send an e-mail to info at cae.co.za for a copy.

Do you Yahoo!?
Free online calendar with sync to Outlook(TM).

More information about the samba mailing list