[Samba] Setting up PDC with PAM

Brian Wiese bwiese at cotse.com
Wed Mar 12 23:55:39 GMT 2003


On 11 Mar 2003 22:43:22 +1100
Andrew Bartlett <abartlet at samba.org> wrote:

|On Mon, 2003-03-10 at 17:09, Paul Cabot wrote:
|> According to the documentation on setting up Samba to be a PDC.  It
|> says that you have to enable encrypted passwords for it to work!
|> 
|> Now for Samba with PAM to work the documentation says that you can't 
|> have encrypted passwords enabled!
|
|Correct, for authentication.  The 'obey pam restrictions' is about
|'account' and 'session' properties like 'expired' and 'too many users'.

Does this apply for the 'password' properties as well?  Can one enforce
the PAM cracklib or passwdqc[1] modules to ensure strong passwords are
being used or not?  Would anyone be willing to contribute a working Samba
PAM config file to the list please?

[1] http://www.openwall.com/passwdqc/

|> So does that mean that I can't set up Samba has a PDC and use PAM to 
|> authenticate the users!
|
|Yes.


More information about the samba mailing list