[Samba] Enforce strong passwords?

John H Terpstra jht at samba.org
Wed Oct 26 00:07:54 GMT 2005

On Tuesday 25 October 2005 17:58, Charles Marcus wrote:
> Is there any way to do this with Samba and LDAP?
> What I'd like is to be able to, at a minimum, force minimum password
> length, mixture of letters and numbers, and at least two 'special
> characters'...
> Is this doable with Samba using LDAP for authentication? If not, is it
> doable using other authentication means?

Yes, it can be done with Samba-3 using either the tdbsam or the ldapsam passdb 
backend. I would recommend that you use Samba-3.0.21 that will soon be 
released as it has a number of refinements to assist in the implementation 
and management of password controls.

Suggest you check the Samba3-HOWTO for information regarding the pdbedit 
command that can be used to manage these settings. It is also possible to use 
the NT4 domain user manager to control these settings. This is also 
documented in the Samba3-HOWTO.


This book is also available in hard copy from Amazon.Com.

- John T.
John H Terpstra
Samba-Team Member
Phone: +1 (650) 580-8668

The Official Samba-3 HOWTO & Reference Guide, 2 Ed., ISBN: 0131882228
Samba-3 by Example, 2 Ed., ISBN: 0131882221X
Hardening Linux, ISBN: 0072254971
Other books in production.

More information about the samba mailing list