[Samba] 'multi-layered' authentication
Andrew Bartlett
abartlet at samba.org
Thu Jan 22 23:24:10 GMT 2004
On Fri, 2004-01-23 at 10:20, webster at lexmark.com wrote:
> Thanks for the reply.
> I am missing something(s) here, & I apologize for that.
>
> You are saying that there is still no way to use PAM on a Samba
> server for authenticating WindowsXP (requires encrypted) clients?
Correct. This is a protocol limitation, it will 'still' be a problem
forever.
> If that's the case, is there any way to do what I want?
That very much depends what you want, you have not been very clear on
that point.
> Are you saying to use Samba's 'smbpasswd' file,
> or something besides PAM, for the authentication,
> but use PAM for the user account restriction?
Yes.
> Can I do encrypted authentication for Samba against an LDAP server
> which I don't control (anonymous bind) ?
NO.
--
Andrew Bartlett abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team abartlet at samba.org
Student Network Administrator, Hawker College abartlet at hawkerc.net
http://samba.org http://build.samba.org http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba/attachments/20040123/f799def9/attachment.bin
More information about the samba
mailing list