The best approach is to configure samba to change the ldap password when
a samba password changes. See the smb.conf man page and password sync
and password chat options.
If you have unix users who want to change their ldap passwords, tell
them to use the "smbpasswd -r pdc_server_name" command- if password
sync is enabled in samba then both their ldap and samba passwords will
change.
Samba and Unix use different password hash mechanisms so you have to
have separate password fields. The only other secure way may be to
configure Windows clients to use kerberos authentication- but that is a
much bigger project.
On 08/09/12 09:55, RAKESH PRITMANI wrote:> Is there a way to syncronize SambaLmPassword & NTLMpassword from LDAP
> password. ldap passwd sync allows to sync ldap passwd from samba, I
> need the other way. I already have external LDAP server with CRYPT
> passwords and need to set SambaLMPasswd with these LDAP passwords.