[Samba] SAMBA PDC with LDAP backend syncing unix/samba accounts ...

L.P.H. van Belle belle at bazuin.nl
Mon May 19 11:24:32 GMT 2008

did you adjust you pam.d settings to accept MD5 password hashes. 

you can find some usefull tips in the Big samba howto 
this one also works for etch.


>-----Oorspronkelijk bericht-----
>Van: samba-bounces+belle=bazuin.nl at lists.samba.org 
>[mailto:samba-bounces+belle=bazuin.nl at lists.samba.org] Namens yogi
>Verzonden: zaterdag 17 mei 2008 19:29
>Aan: samba at lists.samba.org
>Onderwerp: [Samba] SAMBA PDC with LDAP backend syncing 
>unix/samba accounts ...
>Hi all ,
>         I'm running Debian Etch . I just finished
>configuring SAMBA
>as PDC to authenticate against LDAP server which works.
>The system in question uses default debian etch packages.
>As My Linix/unix accounts can authenticate against it. The
>LDAP works.
>    I  Used the default shipped smbldap-populate script to
>setup SAMBA.
>       Everything seems to work as Anonymous User or as
>user root.
>shark:/etc/samba# smbclient -L shark -N
>Anonymous login successful
>Domain=[LDAPBIOMAX] OS=[Unix] Server=[Samba 3.0.24]
>        Share name       Type      Comment
>        ---------       ----      -------
>        netlogon        Disk      Network Logon Service
>        knoppix         Disk
>        IPC$            IPC       IPC Service (Samba Server
>Anonymous login successful
>Domain=[LDAPBIOMAX] OS=[Unix] Server=[Samba 3.0.24]
>        Server               Comment
>        ---------            -------
>        SHARK                Samba Server 3.0.24
>      Now when I try and login as normal user, which i have
>with "smbldap-usermod -a  yogesh"
>smbldap-usershow yogesh
>dn: uid=yogesh,ou=People,dc=biomax,dc=de
>uid: yogesh
>cn: yogesh
>userPassword: {MD5}.SOMELONGHASH ....
>shadowLastChange: 12900
>shadowMax: 10000
>loginShell: /bin/bash
>uidNumber: 668
>gidNumber: 100
>homeDirectory: /sk-home/yogesh
>sambaPwdLastSet: 0
>sambaLogonTime: 0
>sambaLogoffTime: 2147483647
>sambaKickoffTime: 2147483647
>sambaPwdCanChange: 0
>sambaPwdMustChange: 2147483647
>displayName: System User
>sambaSID: S-1-5-21-4033729970-1053622217-143831336-9886
>sambaAcctFlags: [UX ]
>Now when I try and connect I get the following failure .
>shark:/etc/samba# smbclient -L shark -U yogesh
>session setup failed: NT_STATUS_LOGON_FAILURE
>After Digging thru the logs I figuered that if I enter
>password using
>"smbldap-password" . It works.
>Now my Stupid questions ?
>I already have unix users working of LDAP, How can I
>automate the addition of remaining accounts with SAMBA ?
>Also whenever a unix user changes passwd samba password is
>not updated ?
>Any pointers will be of great help.
>Thanks in advace
>To unsubscribe from this list go to the following URL and read the
>instructions:  https://lists.samba.org/mailman/listinfo/samba

More information about the samba mailing list