[Samba] DM and ''offline'' PAM (and NSS?)...
Marco Gaiarin
gaio at sv.lnf.it
Mon Dec 18 14:51:47 UTC 2017
> I've seen:
> https://wiki.samba.org/index.php/PAM_Offline_Authentication
I've tried to enable offline logon, and seems to work as expected.
I've only found a little strange thing, i think related to the fact
that in my DM i've set 'winbind use default domain = yes'.
Folowing the wiki, i've enabled offline logon and then done:
['smbcontrol winbind online'
root at vdmsv1:~# wbinfo -K LNFFVG\\gaio
Enter LNFFVG\gaio's password:
plaintext kerberos password authentication for [LNFFVG\gaio] succeeded (requesting cctype: FILE)
credentials were put in: FILE:/tmp/krb5cc_0
['smbcontrol winbind offline']
root at vdmsv1:~# wbinfo -K LNFFVG\\gaio
Enter LNFFVG\gaio's password:
plaintext kerberos password authentication for [LNFFVG\gaio] succeeded (requesting cctype: FILE)
user_flgs: NETLOGON_CACHED_ACCOUNT
credentials were put in: FILE:/tmp/krb5cc_0
Goot. But still in 'smbcontrol winbind offline' i've done also a:
root at vdmsv1:~# wbinfo -K gaio
Enter gaio's password:
plaintext kerberos password authentication for [gaio] succeeded (requesting cctype: FILE)
credentials were put in: FILE:/tmp/krb5cc_0
and there's no 'user_flgs'. Boh...
--
dott. Marco Gaiarin GNUPG Key ID: 240A3D66
Associazione ``La Nostra Famiglia'' http://www.lanostrafamiglia.it/
Polo FVG - Via della Bontà , 7 - 33078 - San Vito al Tagliamento (PN)
marco.gaiarin(at)lanostrafamiglia.it t +39-0434-842711 f +39-0434-842797
Dona il 5 PER MILLE a LA NOSTRA FAMIGLIA!
http://www.lanostrafamiglia.it/index.php/it/sostienici/5x1000
(cf 00307430132, categoria ONLUS oppure RICERCA SANITARIA)
More information about the samba
mailing list