samba - Sep 2000 - connecting from Windows 2000 to samba 2.0.7

In  order to connect I had to regedt and change the machine to send
unencrypted passwords.  I really do not want to do this.  I prefer
to send encrypted passwords even if the network is very difficult to
get to from the outside.

If anyone has some information on how I can set this up, I'd appreciate
it.  I do not belong to the list so please email directly to pam@lampinc.com.

Thanks.

Patricia Max

----- Begin Included Message -----

On Sat, 30 Sep 2000, Patricia Max wrote:
> 
> In  order to connect I had to regedt and change the machine to send
> unencrypted passwords.  I really do not want to do this.  I prefer
> to send encrypted passwords even if the network is very difficult to
> get to from the outside.
We use something like this to have a NT4 PDC authenticate users to our
samba fileserver, using encrypted passwords. This has worked just fine for
both NT4 and win2k.

/etc/smb.conf:
...
	security = domain
	password server = pdc
	encrypt passwords = yes
...

The samba box needs to be a member of the domain and I think you need to
have users on the samba box matching those in the domain.
(see docs/textdocs/DOMAIN_MEMBER.txt)

It's probably possible to avoid creating the users on the samba box by
using something clever (pam_smb ?) but we don't do that, instead each user
is created twice.

Note that samba 2.0.7 is trying to be a NT4 (things won't work if you
treat it as a win2k).

> If anyone has some information on how I can set this up, I'd appreciate
> it.  I do not belong to the list so please email directly to
pam@lampinc.com.
Maybe you should join. All sorts of things of interest to someone running
samba pop up here. But perhaps you browse the archives instead.

/Urban