[Samba] Samba selectively obeying pam restrictions
simo
idra at samba.org
Fri Dec 15 19:36:37 GMT 2006
On Fri, 2006-12-15 at 13:05 -0600, Gerald (Jerry) Carter wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Charles J Gruener wrote:
>
> > Having a difficult problem getting my pam_access.so
> > module enforced on a 3.0.22 version of Samba.
> >
> ...
> > Lastly, my /etc/samba/smb.conf file:
> > [global]
> > workgroup = DOMAIN
> > realm = DOMAIN.LOCAL
> > security = ADS
>
> I'm not sure that we actually enforce PAM on member servers.
> Simo was adapting a patch for security = domain. I'm not sure
> if it handled ads as well.
Yes with my patch obey pam restrictions = yes let you use the account
stack on any configuration (the session stack was already obeyed on any
configuration).
Simo.
--
Simo Sorce
Samba Team GPL Compliance Officer
email: idra at samba.org
http://samba.org
More information about the samba
mailing list