[Samba] samba authentication PAM/LDAP
Volker Lendecke
Volker.Lendecke at SerNet.DE
Wed Nov 12 22:52:30 GMT 2008
On Wed, Nov 12, 2008 at 03:41:12PM -0700, Christian McHugh wrote:
> > On Wed, Nov 12, 2008 at 03:53:51PM -0500, Lenny Shovsky wrote:
> > > Can Samba authenticate directly ( through pam_ldap ? ) via LDAP, which
> > > only has Unix uids & password hashes ? Thank you.
> >
> > No. You need to store the NT hashes somewhere, either in
> > LDAP or in another passdb backend.
>
> What about the nss winbind backend? Couldn't you setup nss_ldap and pam_ldap,
> and still run a samba server with the nss winbind backend?
Sure. But someone in the end must have the NT hashes. In the
case of winbind it's a domain controller.
Volker
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.samba.org/archive/samba/attachments/20081112/6c8912fa/attachment.bin
More information about the samba
mailing list