Hi there, is it, and how - possible to add an Win2K/XP Client to a Samba-Server (PDC) without encrypted passwords ? We have many of Win9x Clients they connect to the samba-server without using the encrypt passwords = yes parameter in smb.conf. So I want to add a Win2K and XP-Client to the net without changing the smb.conf (encrypt passwords = no). -- SET THE CONTROLS FOR THE HEART OF THE SUN Jens
On Tue, Oct 15, 2002 at 12:46:06PM +0200, J. Strohschnitter wrote:> Hi there, > > is it, and how - possible to add an Win2K/XP Client to a Samba-Server (PDC) > without encrypted passwords ? > We have many of Win9x Clients they connect to the samba-server without using > the encrypt passwords = yes parameter in smb.conf. > So I want to add a Win2K and XP-Client to the net without changing the > smb.conf (encrypt passwords = no).'real' domain logins and 'encrypt passwords = no' are not compatible. Win9X is not a 'real' domain member. Andrew Bartlett
Hi there, is it, and how - possible to add an Win2K/XP Client to a Samba-Server (PDC) without encrypted passwords ? We have many of Win9x Clients they connect to the samba-server without using the encrypt passwords = yes parameter in smb.conf. So I want to add a Win2K and XP-Client to the net without changing the smb.conf (encrypt passwords = no).
On Tue, Oct 15, 2002 at 02:48:34PM +0200, Peter Lustig wrote:> is it, and how - possible to add an Win2K/XP Client to a Samba-Server (PDC) > without encrypted passwords ?On a related note: is it possible to put the whole auth conversation between the Windows client and the Samba PDC in SSL, i.e. is something like stunnel available for Windows? That way, the password would travel securely, but still the PDC would be able to get it in cleartext, and it could in turn hand it to a OpenLDAP that would check it for authentication. That would finally allow us to get rid of NT and LM hashes and say goodbye to password syncing problems. Massimiliano (crossing his fingers)