Hello, Currently at our site we are using plaintext passwords. All of our servers are set to "encrypt passwords = No". All of our NT and 98 boxes have had their registry changed. I am currently upgrading to 2.0.0. So now I am thinking about changing to encrypted passwords. I think that I understand the procedure for setting up the password file. 1) Create a private/smbpasswd file on each server. 2) Set "update encrypted = Yes" on each server. 3) Wait awhile. Then I would like to changeover. Is there any way to do it incrementally, or do I have to change each server to "encrypt passwords = Yes", and undo the NT and 98 registry changes in one fell swoop? Obviously I cannot have servers with encryption on and clients with encryption off. Is it also true that I cannot have servers with encryption off and clients with encryption on? (The state I would be in with some machines during transition). The other question I have is: Is there any way to have a common password file. Under my current plan, each user would have N_SAMBA_SERVERS + 1(NIS/UNIX) passwords. -- Tom Schutter (mailto:tom@platte.com) Platte River Associates, Inc. (http://www.platte.com) CLICKED BY MANY CARRIERS. SINKING. U-936.
> Then I would like to changeover. Is there any way to do it > incrementally, or do I have to change each server to "encrypt > passwords = Yes", and undo the NT and 98 registry changes in one fell > swoop? Obviously I cannot have servers with encryption on and clients > with encryption off.May be this works. We are useing encrypted passwords on SAMBA for NT, but also some old dos-clients that don't use encrypted passwords.> Is it also true that I cannot have servers with > encryption off and clients with encryption on? (The state I would be > in with some machines during transition).That's tru> > The other question I have is: > Is there any way to have a common password file. Under my current > plan, each user would have N_SAMBA_SERVERS + 1(NIS/UNIX) passwords.Use one SAMBA-Server with a smbpasswd file, may be your NIS-Server (this makeing password sycn. a bit easier). And for the other SAMA-Servers use "security = server" (or may be "security = domain") Christian
At 07:44 PM 2/5/99 +1100, you wrote:>> Then I would like to changeover. Is there any way to do it >> incrementally, or do I have to change each server to "encrypt >> passwords = Yes", and undo the NT and 98 registry changes in one fell >> swoop? Obviously I cannot have servers with encryption on and clients >> with encryption off.Yes you can. Win95 and WinNT clients with encryption "off" can connect to servers which require encryption and those that do not. ========================================================================David Chappell David.Chappell@Mail.Trincoll.Edu Computing Center PostMaster@Mail.Trincoll.Edu Trinity College (860)297-2114 Hartford, Connecticut 06106