Mikael Olsson wrote:>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> I have a really odd question i hope someone can help mee with.
>
> Then i look in the smbpasswd file most of the accounts have an
"X" after
> the hashed password inside the brackets, something like this
>
>
smbtest10:2228:01FC5A6BE7BC6929AAD3B435B51404EE:0CB6948805F797BF2A82807973B89537:
>
> [UX ]:LCT-00000000:
>
> The strange thing is if i remove the X flag from the file and check the
> usermanager for domains in NT, the "Password Never Expires"
choise
> become unmarked. i would really like to have this option marked since i
> dont want the windows client to be able to change password.
>
> Then i look in the documentation i cant see annything about this
"X"
> only "D" "U" "W" "N"
'password never expires' != 'user cannot change password'. We
are still
invesigating how best to implement that. It appears to be an ACL on the
user in the SAM, rather than an ACB bit. However, in Active Directory,
it is just a bitflag...
Andrew Bartlett
--
Andrew Bartlett abartlet@pcug.org.au
Manager, Authentication Subsystems, Samba Team abartlet@samba.org
Student Network Administrator, Hawker College abartlet@hawkerc.net
http://samba.org http://build.samba.org http://hawkerc.net