[Samba] Followup re: pam_winbind and "never expires" passwords

Bill Greene bill at rubgrp.com
Mon Oct 30 14:48:18 GMT 2006

More info on the problem that users could access shares, but not login, 
if their passwords were "expired" by days, but had "password never 
expires" flagged.

During further experimentation, I discovered (I'm not a Windows person) 
that in addition to flagging a user as "password never expires", there 
is an account policy flag specifying the same thing globally.  If the 
account policy flag is set, the users can log in; if only the per-user 
flag is set, they cannot.

So to refine my previous statement, it appears pam_winbind ignores the 
per-user "password never expires" flag.

-- bill

(I'm reading the list in summary, so my apologies if someone else has 
already commented on this.)

Bill Greene
Rubicon Group Ltd.
Oak Brook Illinois USA

More information about the samba mailing list