[SAMBA] how to make smbpasswd use or import system passwords?

Ryan Novosielski novosirj at umdnj.edu
Mon Mar 3 23:50:03 GMT 2008 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

If you're on a small system, pam_smbpass in migrate mode works well
(provided your users log into some PAM-enabled service). Once your
smbpasswd file is stocked up, you can use it in sync mode to keep
passwords in sync. This is really the best way short of LDAP.

Maginot Junior wrote:
> Well .... this isnt possible, because all my share are sector specific
> with group restriction ... So ... what I came across is to use mysql
> (ldap is to big to my network with less them 100 users) to sync all
> passwords, Im going to make a db with mysql and inside create a simple
> "login, passwd, full name, homedir" table and populate it with the
> same postfix password that users uses to access email and make through
> pam it work with my ltsp server, email and hopefully with samba too,
> and so make all password be sync... unfortunately I will have to make
> this new implementation, I think this is a samba fault, I really don't
> matter about windows passwords, because all my network isnt going to
> have windows boxes, so why samba one of the most complete projects
> I've ever seen for linux does not have a work through for this
> situation? Like mentioned here, is an ever week question, so Its being
> a big need for everyone ... I'm self come to this list in a extreme
> try to find an ultimate solution, because after googling around I was
> getting convinced that wasn't a possible thing to do.. now after your
> directly answers I'm sure of that.
> 
> I know smb is a protocol that are already in the go for a long time...
> but maybe some linux new things to smb protocol could really help.
> Well, this is more an idea then a complain, maybe Im being to
> promiscuous and not looking to a different view with some other good
> (god) solution ;) ... of course if anyone have any idea that could
> slap my face and give me a new horizon I would be pleased to see.
> 
> Well ... thanks anyway for the good advices and fast answer.
> 
> [ ]'s
> PS: I don't think NFS will be of the same control then Samba, so I
> discarded this option...
> 
> On Wed, Feb 27, 2008 at 12:52 AM, Adam Williams
> <awilliam at mdah.state.ms.us> wrote:
>> you could use a tdbsam password backend, roaming profiles, tell all your
>>  users they will have a default password of whatever, and set their
>>  password to be expired, so on their first log in, they will be required
>>  to change their password.  if you read the samba docs, Windows uses a
>>  different password encryption then what /etc/passwd uses, they aren't
>>  compatible.
>>
>>  or you can map to gues = bad user, and use guest only = yes and guest ok
>>  = yes on your shares, and set your shares not browsable, but i wouldn't
>>  recommend that.
>>
>>
>> Maginot Junior wrote:
>>  > Hi!
>>  >
>>  >
>>  > Im almost loosing my hairs here...
>>  >
>>  > I have already had troubles configuring samba to work just like I
>>  > wanted but in the end everything was fine. Now I have searched a lot
>>  > and many different views for this problems, so I think its better come
>>  > here trying to find the entire solution...
>>  >
>>  > I have about 30 users on my box, all have passwords already set.
>>  > So I come to the idea of making a share for each sector, like sales,
>>  > financial, ti, and so on.
>>  > So far no problem, the shares are created, owned by root and with the
>>  > group respectively with the share name (group sales, share sales).
>>  > Have already added in /etc/group the users for each group and gone
>>  > configuring smb.conf.
>>  >
>>  > I start using security = user and setting inside the shares "valid users = @ti"
>>  >
>>  > Now comes the problem... when I try to access this share, I can only
>>  > access with the user added to smbpasswd, for what I saw until now I
>>  > must have the user in smbpasswd, this is a must to rule... I dont have
>>  > any user passwd in my hand, so I cant just do a smbpasswd -a user and
>>  > set what password whatever I want, so I tried "cat /etc/passwd |
>>  > /usr/sbin/mksmbpasswd > /etc/samba/smbpasswd" and I got a lot of
>>  > XXXX-XXX on the password fields of smbpasswd file...
>>  >
>>  > So Im lost on this, I must add all user to smbpasswd using the same
>>  > password from the system... to make all to stay sync, but this is
>>  > being a pain so any help will be very apreciated.
>>  >
>>  > Thanks,
>>  >
>>  >
>>
>>
> 
> 
> 


- --
 ---- _  _ _  _ ___  _  _  _
 |Y#| |  | |\/| |  \ |\ |  | |Ryan Novosielski - Systems Programmer II
 |$&| |__| |  | |__/ | \| _| |novosirj at umdnj.edu - 973/972.0922 (2-0922)
 \__/ Univ. of Med. and Dent.|IST/AST - NJMS Medical Science Bldg - C630
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFHzI6jmb+gadEcsb4RAo+IAKDaLjFIaBZGKxz5PXr1Qjv0gdSYTQCeOwFX
jgb5DLDmKp/skzp7trSEucQ=
=WMP2
-----END PGP SIGNATURE-----

More information about the samba mailing list