Hi all... I've read a lot about password updates, etc. in both this digest and in the documentation, but I've not seen anyone refer to this. When my PC users change their password on the Master Domain, after some time, their PC password will become locked. It appears that, after changing their password, if they stay active on a samba drive, everything is OK, but if they let the samba process time out for inactivity (dead time = 5 minutes for us), when they go back to the samba connection, they cause NT to record an invalid password. We have NT set up to lock an account after 5 invalid password attempts and the user ends up having to contact a NT admin to get his account unlocked. If the customer changes his password and then logs off from NT for about 10 minutes and then logs back on, everything seems to work OK. It is only when they stay logged on to NT, but let the samba connection time out, that they have a problem. I have to have the dead time in Samba. I, on average run about 250 connections at a time, and if I did not "clean up" the dead connections it would well be over 3000 and I can't afford to have that many UNIX processes running. Anyone have a way to avoid the NT account lockouts?
Hi ! Here is the situation. Is there any way that users can change theirs passwords not by logging into server. ? I`m mean like to use some app or something. We dont use NT - just win98 boxes. The probblem is that i dont give them shell. My conf. redhat6.0 samba 2.0.6 kernel 2.2.14 greetz boka pozdrawiam ---------------------------------------- - Hiroszima 45 Czernobyl 86 Windows 95 - ---------------------------------------- - http://www.djfusion.z.pl/ - - http://www.sto-procent.art.pl/ - ---------------------------------------- EOF
Hello, My name is Philippe and I'm not quite sure I'm asking in the right place this question but here it goes anyway. I installed OpenBSD and configured Samba... Everything is working fine, my users in the LAN using win98 boxes are all able to access their share. The password file /etc/samba/smbpasswd contains their password and is not syncing with the unix password /etc/master.passwd. I'm looking for a way to force my users to change their password each 30 days. The password I want changed is the one in /etc/samba/smbpasswd, the one to connect on the network and access their share. I found a way to change their password using their win98 box (in the control panel and then users)... so they can change their password when they want, but I do not wish to rely on that. Instead i wish them to change their password each 30 days. This is one part of the security standards we wrote in our company that they need to change their password. If you have a solution, suggestions, documentations etc... please help me by email =) Have a good day and keep up the good work. BWoTHa security.is.privacy@videotron.ca
Hi, I got the samba working (to connect to the remote nt system thru the vpn), thanks to going thru all of the docs. I'm having 1 problem, and it's only with 1 user. I am getting this error: USERNAMEX - the local username in question remoteu - name that I am mapping everyone to on my side (matches the username they are expecting on the other side). remoteu is setup with a smbpasswd.>><<[2002/10/04 16:28:01, 3] smbd/process.c:process_smb(877) Transaction 6 of length 162 [2002/10/04 16:28:01, 3] smbd/process.c:switch_message(684) switch message SMBsesssetupX (pid 1670) [2002/10/04 16:28:01, 3] smbd/sec_ctx.c:set_sec_ctx(313) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2002/10/04 16:28:01, 3] smbd/reply.c:reply_sesssetup_and_X(857) Domain=[DOMAIN] NativeOS=[Windows 4.0] NativeLanMan=[Windows 4.0] [2002/10/04 16:28:01, 3] smbd/reply.c:reply_sesssetup_and_X(868) sesssetupX:name=[USERNAMEX] [2002/10/04 16:28:01, 3] lib/username.c:map_username(168) Mapped user USERNAMEX to remoteu [2002/10/04 16:28:01, 2] smbd/reply.c:reply_sesssetup_and_X(982) Defaulting to Lanman password for remoteu [2002/10/04 16:28:01, 2] smbd/password.c:pass_check_smb(575) pass_check_smb failed - invalid password for user [remoteu] [2002/10/04 16:28:01, 1] smbd/reply.c:reply_sesssetup_and_X(998) Rejecting user 'remoteu': authentication failed [2002/10/04 16:28:01, 3] smbd/error.c:error_packet(91) error string = No such file or directory>><<Here is the kicker, I have 6 other users that are able to connect. The only thing I have found that is different about this 7th user is the fact that his username is 9 characters long. Also, I added USERNAMEX to the smbpasswd file with the *remote* password, is that correct or incorrect? Thanks in advance. --John -- John Anderson Ceeva, Inc. 412.690.2300 x330
"Brad Langhorst" <brad@langhorst.com> wrote in message news:1064452219.2490.74.camel@up...> On Wed, 2003-09-24 at 21:02, John Brown wrote: > > > How would the users change their passwords on this stand alone server?Are> > there any Samba or LDAP tools that could be used? > I think you could modify the idealix tools (included in the samba > distribution) to do what you want. > > smbldap-useraddThanks Brad, I will have a look. Are these GUI tools that will run on Windows 2000/XP professional or Windows 98? Some of the users will be regular users with basic computer skills.
Suppose we were to set up a single Samba server with its own database of users and passwords. Users were authenticated by a Windows domain controller for general access to the network. However, we wanted to keep a separate authentication logic for the stand alone server. We would be using OpenLDAP as the password backend. How would the users change their passwords on this stand alone server? Are there any Samba or LDAP tools that could be used? I have read the documentation but I get the impression that the existing tools are designed for Administrators to add and modify user info. on a domain controller.
On Wed, 2003-09-24 at 21:02, John Brown wrote:> How would the users change their passwords on this stand alone server? Are > there any Samba or LDAP tools that could be used?I think you could modify the idealix tools (included in the samba distribution) to do what you want. smbldap-useradd ... brad
Hi, I have installed Samba 2.2.8 on a Solaris 8 server and have a question about samba passwords. I know you can assign an NT server to authenticate passwords, and you can also use samba to create a smbpasswd list. My question, is can you use the existing UNIX /etc/passwd or /etc/shadow file so that we don't have to manage another list? Thanks in advance!
>>My question, is can you use the existing UNIX /etc/passwd or /etc/shadowfile so that we >>don't have to manage another list? mksmbpasswd.sh will parse your /etc/passwd or /etc/shadow file and create the relevent users. I'm not too sure about the initial passwords. But you can get samba to sync/passwd to sync with each other Cheers, .^. Mun Heng, Ow /V\ H/M Engineering /( )\ Western Digital M'sia ^^-^^ DID : 03-7870 5168 The Linux Advocate -----Original Message----- From: Garcia, John F [mailto:john.f.garcia@lmco.com] Sent: Friday, October 31, 2003 6:10 AM To: samba@lists.samba.org Subject: [Samba] password question Hi, I have installed Samba 2.2.8 on a Solaris 8 server and have a question about samba passwords. I know you can assign an NT server to authenticate passwords, and you can also use samba to create a smbpasswd list. My question, is can you use the existing UNIX /etc/passwd or /etc/shadow file so that we don't have to manage another list? Thanks in advance! -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba