[Samba] samba authentication PAM/LDAP
vishesh kumar
linuxtovishesh at gmail.com
Thu Nov 13 10:38:09 GMT 2008
On Thu, Nov 13, 2008 at 4:22 AM, Volker Lendecke
<Volker.Lendecke at sernet.de>wrote:
> On Wed, Nov 12, 2008 at 03:41:12PM -0700, Christian McHugh wrote:
> > > On Wed, Nov 12, 2008 at 03:53:51PM -0500, Lenny Shovsky wrote:
> > > > Can Samba authenticate directly ( through pam_ldap ? ) via LDAP,
> which
> > > > only has Unix uids & password hashes ? Thank you.
> > >
> > > No. You need to store the NT hashes somewhere, either in
> > > LDAP or in another passdb backend.
> >
> > What about the nss winbind backend? Couldn't you setup nss_ldap and
> pam_ldap,
> > and still run a samba server with the nss winbind backend?
>
> Sure. But someone in the end must have the NT hashes. In the
> case of winbind it's a domain controller.
>
> Volker
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/listinfo/samba
>
dear all
Does NT hashes require even if we use kerberos for authentication?.
More information about the samba
mailing list