[Samba] Login winbind(pam) allowed password expired

Carlos carlos.hollow at gmail.com
Tue Aug 2 21:35:21 UTC 2022


I have environment with samba 4 as ADDC on Ubuntu Server and on Debian 
11 users with Pam Wimbind configured and working.

In Samna4 the 3 month password validity policy works fine, but when the 
user does not change the password, login via ssh in Debian 11 still 
works with the old password, or it makes the idea of changing the 
password totally useless.

Other systems with login via ldap, like Webmail Zimbra, or apache with 
htacces with ldap, do not allow login with expired password, only 

How to make ssh+winbind(pam) reset the expired password?



More information about the samba mailing list