On Tuesday 25 October 2005 17:58, Charles Marcus wrote:> Is there any way to do this with Samba and LDAP?
>
> What I'd like is to be able to, at a minimum, force minimum password
> length, mixture of letters and numbers, and at least two 'special
> characters'...
>
> Is this doable with Samba using LDAP for authentication? If not, is it
> doable using other authentication means?
Yes, it can be done with Samba-3 using either the tdbsam or the ldapsam passdb
backend. I would recommend that you use Samba-3.0.21 that will soon be
released as it has a number of refinements to assist in the implementation
and management of password controls.
Suggest you check the Samba3-HOWTO for information regarding the pdbedit
command that can be used to manage these settings. It is also possible to use
the NT4 domain user manager to control these settings. This is also
documented in the Samba3-HOWTO.
http://www.samba.org/samba/docs/Samba3-HOWTO.pdf
This book is also available in hard copy from Amazon.Com.
- John T.
--
John H Terpstra
Samba-Team Member
Phone: +1 (650) 580-8668
Author:
The Official Samba-3 HOWTO & Reference Guide, 2 Ed., ISBN: 0131882228
Samba-3 by Example, 2 Ed., ISBN: 0131882221X
Hardening Linux, ISBN: 0072254971
Other books in production.