Presumably with the PGINA/LDAP solution, the has method is something
unix-compatible (e.g. unix crypt+md5, or SSHA) that is hard to break
with a password cracking program? Are the LDAP transmissions done in
the clear? If so, you could sniff the traffic and capture the
passwords. (You may not consider this ethical.) Either way, if you
had a database of plain text passwords you could then create the NTLM
passwords for each user.
You could try configuring samba to use permit plain text passwords for
authentication. I think (but not sure) that could then configure samba
to use pam authentication (the same way a unix login would.) But you
would then need to configure all the Windows PC's to support plain text
passwords.
On 05/24/12 16:25, aurfalien wrote:> Hi all,
>
> I am using OpenLDAP and over have ~800 users in its DB.
>
> I would like to simply use Samba as a file server, no PDC.
>
> I have been able to export my LDAP DB to a file containing hashes of users
passwords.
>
> Is there a way I can import this file to smbpasswd or other file that Samba
understands so that my 800 some odd users won't have to re register there
passwords?
>
> I would really love to avoid having 800 annoyed users retyping there
passwords for accessing shares.
>
> I have them currently authenticating on Windows via an LDAP client (pGina).
>
> - aurf