-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 09/26/2006 03:10 PM, Diego Martin Fernandez Fazio
escreveu:> Hello, I need some ideas about one problem. I have 500 users
> with md5 password on a MSsql server that I need to migrate to
> a Samba server with ldap.
> Is there any way to migrate or use those usernames and the md5
> hashes? i mean... may I use those hash for SMB?
Short answer: yes for usernames, no for passwords.
Samba (SMB/CIFS/NTLM) uses a complete different structure
to set and encrypt the passwords. Since you can't recover the
information hashed with MD5 you have to do some workaround. You
can try to capture your users password on the server side during
some time, or you can set your users password to a default value
and ask them to change on the first login.
> I know that openldap could use md5 but i m not sure if the
> samba+ldap can use those hashes to autenticate the users.
You will have multiple objects in the LDAP database, and
certainly you can use MD5 to some passwords and objects, but not
for samba, it has two fields sambaNTPassword and sambaLMPassword
and both of them uses a special routine (it uses MD4 in the
process, but it certainly can use the MD5 per se). ;)
> Many many thanks and exscuse my bad english.
> Diego.-
Kind regards,
- --
Felipe Augusto van de Wiel <felipe@paranacidade.org.br>
Coordenadoria de Tecnologia da Informa??o (CTI) - SEDU/PARANACIDADE
http://www.paranacidade.org.br/ Phone: (+55 41 3350 3300)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Debian - http://enigmail.mozdev.org
iD8DBQFFHRf8Cj65ZxU4gPQRAoqMAKCeHoNdF93ieyBnzUwFSkNUlFizcwCfZHLq
1vmqLQ1E55xs05ymjayVK3A=Gwb5
-----END PGP SIGNATURE-----