Kevin Taylor
2012-May-04 18:05 UTC
[Samba] samba(3.6.4), with LDAP backend and sambapasswordhistory issue
We would like to have password history working in our setup which is samba with Sun Directory Services 7.0 on the backend. Everything else seems to be working ok, but I notice that the sambapasswordhistory entry for any particular user is filled with 0's. If I set the password for the account, then it's 16 0's, followed by a copy of the password hash, and the rest 0's. If I change the password to something else, the history entry stays the same. If I change the password back to the original, the second password hash that I entered isn't stored along with the original. It's 0's. I've seen online that someone had this issue in 2005, but I didn't see any responses to this. Has anyone seen this or have a suggestion of what I can try? Thanks for the help. we're using a history of 24 in case it matters...maybe that's a problem, should it be 23?
Kevin Taylor
2012-May-08 12:21 UTC
[Samba] samba(3.6.4), with LDAP backend and sambapasswordhistory issue
I'm still trying to track this down, to see if I can offer any further info. Increasing the log level shows that all of the history requests are happening in pdb_ldap.c, but I don't know that I saw where it was setting the history during a password change. I'm also seeing a lot of 'Failed to get password history for user' messages. I'm not sure why samba can't get that information. I don't see any errors in the ldap server logs, but I might try to read them a little closer to see if something is being blocked. Is there a samba command to display the user password history directly, and maybe I can see a different error?> From: groucho.64738 at hotmail.com > To: samba at lists.samba.org > Date: Fri, 4 May 2012 14:05:54 -0400 > Subject: [Samba] samba(3.6.4), with LDAP backend and sambapasswordhistory issue > > > > We would like to have password history working in our setup which is samba with Sun Directory Services 7.0 on the backend. Everything else seems to be working ok, but I notice that the sambapasswordhistory entry for any particular user is filled with 0's. > > If I set the password for the account, then it's 16 0's, followed by a copy of the password hash, and the rest 0's. > > If I change the password to something else, the history entry stays the same. > > If I change the password back to the original, the second password hash that I entered isn't stored along with the original. It's 0's. > > I've seen online that someone had this issue in 2005, but I didn't see any responses to this. Has anyone seen this or have a suggestion of what I can try? > > Thanks for the help. > > > we're using a history of 24 in case it matters...maybe that's a problem, should it be 23? > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba