Hi, my name is Yusuf, I just join with this groups. I have using samba PDC with LDAP as backend. I have a problem to change user password from web. I tried using sudo smbldap-passwd, change permission every file so apache can read / execute that file, but I'm still can't change the user password. Is there any way to change the password only with change the LDAP password (using phpldapadmin maybe)? Btw, if I have to change the backend, maybe using MySQL so I can change password from web, no problem, because I just implemented it in one department, not all department in my company. Thank's before. Best Regards, Yusuf. --------------------------------- Yahoo! DSL Something to write home about. Just $16.99/mo. or less
Yusuf Tikupadang wrote:> Btw, if I have to change the backend, maybe > using MySQL so I can change password from web, no problem, because I > just implemented it in one department, not all department in my > company. Thank's before.MySQL as a backend is apparently a bad idea. Look for recent posts at the end of December in the archives to see why. Regards Geoff
There are perl modules available to directly modisy the data in the LDAP backend. Net::LDAP also I needed some other perl module to change the SMB passwd search CPAN and you should find it ;) Yusuf Tikupadang wrote:> Hi, my name is Yusuf, I just join with this groups. > > I have using samba PDC with LDAP as backend. I have a problem to change user password from web. I tried using sudo smbldap-passwd, change permission every file so apache can read / execute that file, but I'm still can't change the user password. Is there any way to change the password only with change the LDAP password (using phpldapadmin maybe)? Btw, if I have to change the backend, > maybe using MySQL so I can change password from web, no problem, because I just implemented it in one department, not all department in my company. > Thank's before. > > > Best Regards, > Yusuf. > > > > --------------------------------- > Yahoo! DSL Something to write home about. Just $16.99/mo. or less-- Jeff Saxton SenSage, Inc. 55 Hawthorne Street Suite 700 San Francisco, CA 94105 Phone: 415.808.5900 Fax: 415.371.1385 Direct: 415-808-5921 Cell: 415-640-6392 mailto:support@sensage.com Enterprise Security Analytics SenSage, the leading provider of enterprise security analytics, offers unparalleled performance and a scalable means for organizations to centrally aggregate, efficiently analyze, dynamically monitor and cost-effectively store massive volumes of event log data.
On Mon, 2006-01-02 at 18:31 -0800, Yusuf Tikupadang wrote:> Hi, my name is Yusuf, I just join with this groups. > > I have using samba PDC with LDAP as backend. I have a problem to change user password from web. I tried using sudo smbldap-passwd, change permission every file so apache can read / execute that file, but I'm still can't change the user password. Is there any way to change the password only with change the LDAP password (using phpldapadmin maybe)? Btw, if I have to change the backend, > maybe using MySQL so I can change password from web, no problem, because I just implemented it in one department, not all department in my company. > Thank's before. >---- other good advice has been given. I would want to add that there are many versions of smbldap-tools and you should make sure that you have a current version for your Unix/Linux. You shouldn't need to setuid on any of the smbldap-tools programs as samba has root privileges and can execute them. Any web/perl/shell command to execute them with sufficient authority can execute it. Web based such as phpldapadmin, lam, webmin (LDAP Users and Groups) are all capable of setting the samba password attributes (sambaNTPassword and sambaLMPassword) in the proper hashed format. Craig