Paul Coray
2005-Jan-06 10:38 UTC
[Samba] pdbedit syntax for forcing user to change password
Hi all Maybe a stupid question, but I'm not able to figure this out from the manpage nor from the HOWTOs... How can I force a user to change his password at next logon? I tried: # pdbedit -P "user must logon to change password" -C 0 -u username # pdbedit -u username -P "user must logon to change password" -C 0 # pdbedit -P "user must logon to change password" -C 0 username + these without -C 0 -> Incompatible or insufficient options on command line! Usage: [...] When I use the command without the username argument (# pdbedit -P "user must logon to change password" -C 0), I get: Account policy value for user must logon to change password was 0 Account policy value for user must logon to change password is now 0 Makes no sense to me: Which user's account policy?? Is this a bug? I use Samba 3.0.9 with ldapsam backend. TIA for clarifying! Paul -- Paul Coray Administrator Server und Netzwerk Oeffentliche Bibliothek der Universitaet Basel EDV-Abteilung Schoenbeinstrasse 18-20 CH-4056 Basel Tel: +41 61 267 05 13 Fax: +41 61 267 31 03 mailto:paul.coray@unibas.ch http://www.ub.unibas.ch
Mathias.Wohlfarth@mw-eb.de
2005-Jan-07 13:10 UTC
Antwort: [Samba] pdbedit syntax for forcing user to change password
We have (had) the same problem.
The new password control in samba 3 is something we have been waiting for
a long time and it is a good feature.
But these functions seem to be fallen from heaven. Whenever we put a
question concerning passwords to this forum, we never got an answer. Same
with this one.
We have solved the problem by setting sambaPwdMustChange to 0 after
changing the password with smbpasswd. We are using ldap and so we are able
to manipulate the user data in ldap. when you are using tdbsam, we do not
no how to manipulate, because nobody knows, how the data is organized.
We recommend to use ldap, also for other reasons (i.e. if you want to
exclude some users from being forced to change the password after the
specified time you kann use pdbedit -x, but the user is still requested to
change the password (allthough he must not). In this case we set
sambaPwdMustChange to -1).
regards Mathias
Mathias Wohlfarth EDV-Beratung
Thomas-Mann-Str.1
53111 Bonn
Tel. 0172 / 53 45 591
01801 / 777 555 33 01
Fax 0228 / 9469181
Email mathias.wohlfarth@mw-eb.de
Paul Coray <paul.coray@unibas.ch>
Gesendet von: samba-bounces+mathias.wohlfarth=mw-eb.de@lists.samba.org
06.01.2005 11:38
An: samba@lists.samba.org
Kopie:
Thema: [Samba] pdbedit syntax for forcing user to change password
Hi all
Maybe a stupid question, but I'm not able to figure this out from the
manpage nor from the HOWTOs...
How can I force a user to change his password at next logon?
I tried:
# pdbedit -P "user must logon to change password" -C 0 -u username
# pdbedit -u username -P "user must logon to change password" -C 0
# pdbedit -P "user must logon to change password" -C 0 username
+ these without -C 0
-> Incompatible or insufficient options on command line! Usage: [...]
When I use the command without the username argument (# pdbedit -P "user
must logon to change password" -C 0), I get:
Account policy value for user must logon to change password was 0
Account policy value for user must logon to change password is now 0
Makes no sense to me: Which user's account policy?? Is this a bug?
I use Samba 3.0.9 with ldapsam backend.
TIA for clarifying!
Paul
--
Paul Coray
Administrator Server und Netzwerk
Oeffentliche Bibliothek der Universitaet Basel
EDV-Abteilung
Schoenbeinstrasse 18-20
CH-4056 Basel
Tel: +41 61 267 05 13
Fax: +41 61 267 31 03
mailto:paul.coray@unibas.ch
http://www.ub.unibas.ch
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba