[Samba] Migrating users

Felipe Augusto van de Wiel felipe at paranacidade.org.br
Fri Sep 29 12:56:30 GMT 2006

Hash: SHA1

On 09/26/2006 03:10 PM, Diego Martin Fernandez Fazio escreveu:
> Hello, I need some ideas about one problem. I have 500 users 
> with md5 password on a MSsql server that I need to migrate to
> a Samba server with ldap.
> Is there any way to migrate or use those usernames and the md5 
> hashes? i mean... may I use those hash for SMB?

	Short answer: yes for usernames, no for passwords.

	Samba (SMB/CIFS/NTLM) uses a complete different structure
to set and encrypt the passwords. Since you can't recover the
information hashed with MD5 you have to do some workaround. You
can try to capture your users password on the server side during
some time, or you can set your users password to a default value
and ask them to change on the first login.

> I know that openldap could use md5 but i m not sure if the 
> samba+ldap can use those hashes to autenticate the users.

	You will have multiple objects in the LDAP database, and
certainly you can use MD5 to some passwords and objects, but not
for samba, it has two fields sambaNTPassword and sambaLMPassword
and both of them uses a special routine (it uses MD4 in the
process, but it certainly can use the MD5 per se). ;)

> Many many thanks and exscuse my bad english.
> Diego.-

	Kind regards,

- --
Felipe Augusto van de Wiel <felipe at paranacidade.org.br>
Coordenadoria de Tecnologia da Informação (CTI) - SEDU/PARANACIDADE
http://www.paranacidade.org.br/           Phone: (+55 41 3350 3300)
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Debian - http://enigmail.mozdev.org


More information about the samba mailing list