[Samba] 'multi-layered' authentication

Andrew Bartlett abartlet at samba.org
Thu Jan 22 23:24:10 GMT 2004

On Fri, 2004-01-23 at 10:20, webster at lexmark.com wrote:
> Thanks for the reply.
> I am missing something(s) here, & I apologize for that.
> You are saying that there is still no way to use PAM on a Samba
> server for authenticating WindowsXP (requires encrypted) clients?

Correct.  This is a protocol limitation, it will 'still' be a problem

> If that's the case, is there any way to do what I want?

That very much depends what you want, you have not been very clear on
that point.

> Are you saying to use Samba's 'smbpasswd' file,
> or something besides PAM, for the authentication,
> but use PAM for the user account restriction?


> Can I do encrypted authentication for Samba against an LDAP server
> which I don't control (anonymous bind) ?


Andrew Bartlett                                 abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team  abartlet at samba.org
Student Network Administrator, Hawker College   abartlet at hawkerc.net
http://samba.org     http://build.samba.org     http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba/attachments/20040123/f799def9/attachment.bin

More information about the samba mailing list