[Samba] user must logon to change password

Winanjaya - PBXSoftwares.com winanjaya at pbxsoftwares.com
Sat Feb 4 05:49:35 GMT 2006


Dear All,

This is my last progress:

I added passdb = tdbsam into my [global] and it works I meant now It will
ask me to change my password (because it has expired and must be changed)
I changed it successfully but after that I met message "Unable to log you on
because of an account restriction" and go back to login screen again,  I
enter my user id and my new password and it passed me back to change my
password with reason the password has expired and must be changed.

below is the last version of my /etc/samba/smb.conf

please help..  thanks a lot in advance

Regards
Winanjaya

[global]

   workgroup = LINUX
   server string = Samba Server
   printcap name = /etc/printcap
   load printers = yes
   log file = /var/log/samba/%m.log
   max log size = 50
   security = user
   encrypt passwords = yes
   socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
   local master = no
   os level = 65
   preferred master = yes
   domain logons = yes
   logon drive = H:
   logon script = logon.bat
   wins support = yes
   dns proxy = no
   time server = yes
   passdb backend = tdbsam
   add machine script = /usr/sbin/useradd -d /var/lib/nobody -g 100 -s
/bin/false -M %u

[homes]
   comment = Home Directories
   browseable = no
   writable = yes

 [netlogon]
   comment = Network Logon Service
   path = /home/samba/netlogon
   writable = no
   public = no

[printers]
   comment = All Printers
   path = /var/spool/samba
   browseable = no
   guest ok = no
   writable = no
   printable = yes

[tmp]
   comment = Temporary file space
   path = /tmp
   read only = no
   public = yes

[public]
   path = /home/public
   public = yes
   only guest = no
   writable = yes
   read only = no
   browsable = yes
   printable = no

===========

----- Original Message -----
From: "Winanjaya - PBXSoftwares.com" <winanjaya at pbxsoftwares.com>
To: <samba at lists.samba.org>
Sent: Saturday, February 04, 2006 11:24 AM
Subject: [Samba] user must logon to change password




Dear All,

I turned ON the Samba Policy Control "user must logon to change password" by
runing below pdbedit command

[root at samba samba]# pdbedit -P "user must logon to change password"
account policy value for user must logon to change password is 0

[root at samba samba]# pdbedit -P "user must logon to change password" -C 1
account policy value for user must logon to change password was 0
account policy value for user must logon to change password is now 1

[root at samba samba]# pdbedit -P "user must logon to change password"
account policy value for user must logon to change password is 1

I created user1

[root at samba samba]# pdbedit -a user1
new password:
retype new password:
Unix username:        user1
NT username:
Account Flags:        [U          ]
User SID:             S-1-5-21-2389550245-4160606791-3118586259-2004
Primary Group SID:    S-1-5-21-2389550245-4160606791-3118586259-2005
Full Name:
Home Directory:       \\samba\user1
HomeDir Drive:        H:
Logon Script:         logon.bat
Profile Path:         \\samba\user1\profile
Domain:               LINUX
Account desc:
Workstations:
Munged dial:
Logon time:           0
Logoff time:          Sat, 14 Dec 1901 03:45:51 GMT
Kickoff time:         Sat, 14 Dec 1901 03:45:51 GMT
Password last set:    Sat, 04 Feb 2006 11:19:58 GMT
Password can change:  Sat, 04 Feb 2006 11:19:58 GMT
Password must change: Sat, 14 Dec 1901 03:45:51 GMT
[root at samba samba]# pdbedit -Lv -u user1
Unix username:        user1
NT username:
Account Flags:        [U          ]
User SID:             S-1-5-21-2389550245-4160606791-3118586259-2004
Primary Group SID:    S-1-5-21-2389550245-4160606791-3118586259-2005
Full Name:
Home Directory:       \\samba\user1
HomeDir Drive:        H:
Logon Script:         logon.bat
Profile Path:         \\samba\user1\profile
Domain:               LINUX
Account desc:
Workstations:
Munged dial:
Logon time:           0
Logoff time:          Sat, 14 Dec 1901 03:45:51 GMT
Kickoff time:         Sat, 14 Dec 1901 03:45:51 GMT
Password last set:    Sat, 04 Feb 2006 11:19:58 GMT
Password can change:  Sat, 04 Feb 2006 11:19:58 GMT
Password must change: Sat, 14 Dec 1901 03:45:51 GMT
[root at samba samba]#

when login from Windows 2000 Prof as user1 .. why it did not ask me to
change my password .. ? .. please advise

Many thanks in advance

Regards
Winanjaya






***********************
Our outgoing mail has been scanned by MSS.
***********************
--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/listinfo/samba

***********************
Your mail has been scanned by MSS.
***********************




***********************
Our outgoing mail has been scanned by MSS.
***********************



More information about the samba mailing list