I've finally gotten Samba (version 1.9.18p4) working on a RS/6000 server
running AIX version 4.3.2, for a group of Windows NT 4.0 workstations on build 5
to access some shared directories. Everything works fine when I set them up - I
have
encrypt passwords = yes
smb passwd file = /usr/local/samba/private/smbpasswd
in my smb.conf, added the passwords to the smbpasswd file, and it seems to
recognize the encrypted password from NT and give the users the access they
need.
The problem comes when I tried implementing the syncing of Unix and Samba
passwords. I added
unix password sync = yes
passwd chat = *New*password %n\n *new*password* %n\n
passwd program = /usr/bin/passwd %u
I was hoping that the users could telnet into the server and just use
"smbpasswd" to change both passwords, but it appears that it
doesn't change the unix password, and gives no error message telling them it
failed. The error log contains these three lines from their attempt:
Can't set uid (AIX3)
password changing not compiled in (user=username)
Can't set uid (AIX3)
When they try to attach, they get
ERRSRV - ERRbadpw
bad password name/password pair in tree connect or session setup
I've searched the Samba site, and can't find anything about AIX, and
darned little about setting up access for NT build 5. I'm concerned that
maybe I can't sync the passwords, because if the chat is changing the unix
password as root, in AIX the root "passwd username" command actually
only sets an initial password, which the user must sign in with and immediately
re-set to something else.
Any help would be greatly appreciated.
Jane Douglas - IT Specialist
Phone - 603-352-0310 x388
Fax - 603-355-4534
E - douglaja@timken.com
To assist with the installation, configuration and testing you should obtain the IBM Redbook AIX for Windows NT: Solutions for Interoperability, SG24-5102-01. You can order a hardcopy or CD copy of the book or you can download it in PDF format. http://www.redbooks.ibm.com/ enter the search string AIX for Windows NT at the website location. You will be using Chapter 8 of this manual entitled Samba for UNIX.
[Jane Douglas]> unix password sync = yes > passwd chat = *New*password %n\n *new*password* %n\n > passwd program = /usr/bin/passwd %uLast I checked, and I admit this was years ago, Samba did not support the `passwd chat' option under AIX. If I remember correctly, it would be a simple matter of some glue code for AIX master/slave pty's, which seem to be quite similar to Unix98 pty's but not quite identical (i.e. the master device is /dev/ptc instead of /dev/ptmx, not sure if that's the only difference or not) and of course the autoconf gunk to go with. I started writing such a patch once but gave it up since, concluding that for the effort I was putting in, we don't really need passwd sync around here anyway. To me, the Unix tty layer is a twisty maze of passages, all different. Peter
Hi,
oops I put my mail in the wrong discussion group.
I have running Samba 2.0.6 resp. 2.0.7 on AIX4.2.1 and HPUX 10.20.
I got unix password sync work.
However, this needs a change in chgpasswd.c. This will affect not only
AIX and HP-UX, resp.
I will append my original message below.
--------------------------------- original
------------------------------
Hi all,
NT - unix password synchronisation works for AIX 4.21,
if one performs some (hopefully) minor changes in the source file
"chgpasswd.c".
I tried to configure "unix password sync" for samba 2.0.6 on a RS6000
with AIX 4.21.
However, looking in the log file - with log level 100 - it seemed that
samba
doesn't chat with the unix passwd program.
The problem was hidden in the function "dochild", where the function
call
ioctl(slave, I_PUSH, "ldterm");
in line 137 causes an (uncontrolled) interrupt.
After commenting this line out, the problem disappeared.
I think this problem will affect several unix dialects.
I'm not a specialist in programming user-kernel process communications,
so I don't know whether I opened some holes.
Can anybody tell me something?
At Last a hint:
There will be a ADMCHG flag in /etc/security/passwd if root changes a
password of a user.
This causes the user to change his password when he logs in.
My personal solution to circumvent this annoying feature is by adding
the lines
#ifdef AIX
pstrcat(passwordprogram,"; pwdadm -c ");
pstrcat(passwordprogram,name);
#endif
to the source code. The shell command "pwdadm -c" removes all (!!)
flags
for the user in
/etc/security/passwd.
Sorry for putting this mail to this place, but I don't know where the
best place is for it.
ciao
Ralph