[Samba] samba+Ldap+smbldap-tools
sato x
garasi9 at gmail.com
Wed Mar 14 09:20:16 GMT 2007
Asier was right: you don't need the "passwd program" line in smb.conf - even
it's not smbldap application. The smbldap application that used to change
the user password is smbldap-passwd. Please check your ACL in slapd.conf.
Mine is
access to attr=userPassword,sambaLMPassword,sambaNTPassword
by self write
by anonymous auth
by * none
access to *
by * read
It should work in your place either.
PS. You didn't forget to run the "smbpasswd -w Password", did you?
On 3/12/07, Asier Baranguán <abaranguan at elpagestion.com> wrote:
>
> Chechu escribió:
> > I have aproblem with the smbldap-tools...when I try to change the
> > passwd fron a user in win...I get the error "....", and I know that the
> > script of smbldap-tools fails when try to execute the next line:
>
> [ ... ]
>
> This looks mostly an ACL problem in your LDAP server (OpenLDAP?).
>
> > [global]
> >
> > workgroup = IRONMAN
> > netbios name = SHOGUN
> > server string = SAMBA-LDAP PDC server
> > ; wins support = no
> > ; wins server = w.x.y.z
>
> Hmmm... ¿domain without WINS Server? If you have windows clients a wins
> server is not
> strictly neccesary, but it's strongly adviced.
>
> > security = user
> > encrypt passwords = true
> > passdb backend = ldapsam:ldaps://shogun.ironman.es:636
> > ; guest account = guest
> > invalid users = root
> > unix password sync = no
> > ; ldap passwd sync = yes
>
> With this settings I assume that your samba users don't need to be
> recognized as regular
> users.
>
> > passwd program = /usr/sbin/changepasswd.atc -o %u
>
> Emmm... ¿this script calls smbldap-passwd?
>
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/listinfo/samba
>
More information about the samba
mailing list