:Re: [Samba] Unknown PAM failiure in WIN2003/ Active Directory
+ samba
Felipe Augusto van de Wiel
felipe at paranacidade.org.br
Mon Oct 17 16:45:19 GMT 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Philippe Dhont (Sea-ro) escreveu:
> Damn, 2.6.13.4 i REALLY mean! :)
> (i probably need a holliday!)
[...]
Ok. :-)
> In smb.conf, i removed obey pam restrictions and now it works...
> What does "obey pam restrictions" do ?
- From smb.conf manpage:
obey pam restrictions (G)
When Samba 3.0 is configured to enable PAM support (i.e. --with-pa
m), this parameter will control whether or not Samba should obey PAMâs account a
nd session management directives. The default behavior is to use PAM for clear t
ext authentication only and to ignore any account or session management. Note th
at Samba always ignores PAM for authentication in the case of encrypt passwords
= yes. The reason is that PAM modules cannot support the challenge/response auth
entication mechanism needed in the presence of SMB password encryption.
Default: obey pam restrictions = no
Kind regards,
- --
//////////
// Felipe Augusto van de Wiel <felipe at paranacidade.org.br>
// CTI/Suporte - SEDU/PARANACIDADE
// http://www.paranacidade.org.br/
//////////
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Using GnuPG with Debian - http://enigmail.mozdev.org
iD8DBQFDU9UeCj65ZxU4gPQRAtNoAJ9ju6gKtT/pxft/LzCzc8pLM27z2wCeLTsR
GtY14kIPeLaj4VCsh1xfPIU=
=UwXe
-----END PGP SIGNATURE-----
More information about the samba
mailing list