M. D. Parker
2004-Mar-15 23:40 UTC
[Samba] M$ W2K Clients get requests to change samba password -- PDC is a samba 2.2.8a
I am seeing an intermittent problem that bugs just a few people, infrequently. We use a Linux RH8 / Samba 2.2.8a PDC and the clients are W2K SP3 systems with current M$ patches. At times, users get the a message that their password expires in XX days and if they would like to change them. The smbpasswd file for all user entries are marked with the flags 'UX' meaning of course the password NEVER expires. I have verified that the RH shadow passwords (should not be used) are set to never expire. And "obey pam restrictions=no".
Craig White
2004-Mar-16 02:39 UTC
[Samba] M$ W2K Clients get requests to change samba password -- PDC is a samba 2.2.8a
On Mon, 2004-03-15 at 16:39, M. D. Parker wrote:> I am seeing an intermittent problem that bugs just a few people, > infrequently. > We use a Linux RH8 / Samba 2.2.8a PDC and the clients are W2K SP3 systems > with > current M$ patches. > > At times, users get the a message that their password expires in XX days and > if they would like to change them. > > The smbpasswd file for all user entries are marked with the flags 'UX' > meaning > of course the password NEVER expires. > > I have verified that the RH shadow passwords (should not be used) are set to > never > expire. And "obey pam restrictions=no".---- sounds to me like a local policy issue Craig
JustFillBug
2004-Mar-16 03:37 UTC
[Samba] Re: M$ W2K Clients get requests to change samba password -- PDC is a samba 2.2.8a
On 2004-03-15, M. D. Parker <mike.parker@ga.com> wrote:> > At times, users get the a message that their password expires in XX days and > if they would like to change them. > > The smbpasswd file for all user entries are marked with the flags 'UX' > meaning > of course the password NEVER expires. > > I have verified that the RH shadow passwords (should not be used) are set to > never > expire. And "obey pam restrictions=no". >Yes, it is very hard to find out how to change expire date on the net. Bad document or document organization on Samba. You have to use 'pdbedit' to control that. And this should be in FAQ. All the talk about shadow password and pam are misleading.
parkerm@ga.com
2004-Mar-16 05:00 UTC
[Samba] M$ W2K Clients get requests to change samba password -- PDC is a samba 2.2.8a
Please explain further.....there are no policies implemented and we use a samba 2.2.8a PDC. If you are talking something on the local machine, please be advised that it has seemed endemic to a specific couple of users even after the physical machines have been swapped out. Mike On 15 Mar 2004 at 19:38, Craig White wrote:> On Mon, 2004-03-15 at 16:39, M. D. Parker wrote: > > I am seeing an intermittent problem that bugs just a few people, > > infrequently. > > We use a Linux RH8 / Samba 2.2.8a PDC and the clients are W2K SP3 systems > > with > > current M$ patches. > > > > At times, users get the a message that their password expires in XX days and > > if they would like to change them. > > > > The smbpasswd file for all user entries are marked with the flags 'UX' > > meaning > > of course the password NEVER expires. > > > > I have verified that the RH shadow passwords (should not be used) are set to > > never > > expire. And "obey pam restrictions=no". > ---- > sounds to me like a local policy issue > > Craig > > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba