Hello,
I am currently trying to get a Samba 4.5.1 environment set up for testing
and I am unable to get samba to request a new password from a windows
user. The error that I get, is in Japanese, so I don't have the exact
translation, however it is along the lines of...
Your user password must be changed before logging in for the first time.
However it does not give me the prompt to do so as shown in the below image.
https://s14.postimg.org/vd14ideqp/Samba_Login.png
My current build options for samba are:
http://pastebin.com/tEb1Pk5H
I am currently using SambaDC (although my computer is not connected to the
samba domain). My Samba configuration is below.
# Global parameters
[global]
netbios name = IP-12-0-1-194
realm = SAMBATEST.NET
server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl,
winbindd, ntp_signd, kcc, dnsupdate
workgroup = SAMBATEST
server role = active directory domain controller
idmap_ldb:use rfc2307 = yes
# Shares
[netlogon]
path = /usr/local/samba/var/locks/sysvol/sambatest.net/scripts
read only = No
[sysvol]
path = /usr/local/samba/var/locks/sysvol
read only = No
[testshare]
path = /usr/local/samba/var/locks/testshare
read only = No
read list = Administrator
If anyone has the user password change via native windows RPC? calls
working please help me understand where I am going wrong.
If you need any additional information please let me know.
*************************************************
マッタン・スコット 【Mattan, Scott】
サービス開発担当
マーケティング部
ニスコム株式会社
*************************************************
On Fri, 2 Dec 2016 14:55:44 +0900 Scott Mattan via samba <samba at lists.samba.org> wrote:> Hello, > > I am currently trying to get a Samba 4.5.1 environment set up for > testing and I am unable to get samba to request a new password from a > windows user. The error that I get, is in Japanese, so I don't have > the exact translation, however it is along the lines of... > > Your user password must be changed before logging in for the first > time. > > However it does not give me the prompt to do so as shown in the below > image. > > https://s14.postimg.org/vd14ideqp/Samba_Login.png > > My current build options for samba are: > > http://pastebin.com/tEb1Pk5H > > I am currently using SambaDC (although my computer is not connected > to the samba domain). My Samba configuration is below. > > # Global parameters > [global] > netbios name = IP-12-0-1-194 > realm = SAMBATEST.NET > server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, > drepl, winbindd, ntp_signd, kcc, dnsupdate > workgroup = SAMBATEST > server role = active directory domain controller > idmap_ldb:use rfc2307 = yes > > # Shares > [netlogon] > path = /usr/local/samba/var/locks/sysvol/sambatest.net/scripts > read only = No > > [sysvol] > path = /usr/local/samba/var/locks/sysvol > read only = No > > [testshare] > path = /usr/local/samba/var/locks/testshare > read only = No > read list = Administrator > > If anyone has the user password change via native windows RPC? calls > working please help me understand where I am going wrong. > > If you need any additional information please let me know.How did you build Samba ? The build options you linked to, appear to be from 'smbd -b' Yet the smb.conf is from an AD DC, you also say you are trying to change a password from a machine that is not joined to the domain. You also seem to have built the deprecated 'ntvfs' filesystem. More info required please. Rowland
Marc Muehlfeld
2016-Dec-04 11:11 UTC
[Samba] Change Password from Windows Native Interface
Hi Scott, Am 02.12.2016 um 06:55 schrieb Scott Mattan via samba:> I am currently trying to get a Samba 4.5.1 environment set up for testing > and I am unable to get samba to request a new password from a windows > user. The error that I get, is in Japanese, so I don't have the exact > translation, however it is along the lines of... > > Your user password must be changed before logging in for the first time. > > I am currently using SambaDC (although my computer is not connected to the > samba domain).As far as I know, Windows only prompts for password changes when a domain user logs into a domain workstation. If a domain user just access a share from a none-domain-member machine only an error is shown and access is denied. Am 03.12.2016 um 18:53 schrieb Rowland Penny via samba:> You also seem to have built the deprecated 'ntvfs' filesystem.Yes, but he's not using it:> server services = s3fs,...If he would, Samba 4.5 would fail to start: https://wiki.samba.org/index.php/Updating_Samba#The_ntvfs_File_Server_Back_End_Has_Been_Disabled Regards, Marc
On Sun, 4 Dec 2016 12:11:17 +0100 Marc Muehlfeld via samba <samba at lists.samba.org> wrote:> Hi Scott, > > Am 02.12.2016 um 06:55 schrieb Scott Mattan via samba: > > I am currently trying to get a Samba 4.5.1 environment set up for > > testing and I am unable to get samba to request a new password from > > a windows user. The error that I get, is in Japanese, so I don't > > have the exact translation, however it is along the lines of... > > > > Your user password must be changed before logging in for the first > > time. > > > > I am currently using SambaDC (although my computer is not connected > > to the samba domain). > > As far as I know, Windows only prompts for password changes when a > domain user logs into a domain workstation. If a domain user just > access a share from a none-domain-member machine only an error is > shown and access is denied. > > > > Am 03.12.2016 um 18:53 schrieb Rowland Penny via samba: > > You also seem to have built the deprecated 'ntvfs' filesystem. > > Yes, but he's not using it: > > server services = s3fs,... > > If he would, Samba 4.5 would fail to start: > https://wiki.samba.org/index.php/Updating_Samba#The_ntvfs_File_Server_Back_End_Has_Been_Disabled > >Yes, I noticed, but everything the OP posted seemed to be just wrong. He appears to be running Samba as an AD DC, but isn't joining anything to it, he has built the 'ntvfs' filesystem but isn't using it. Perhaps it might help if the OP was to describe just what they are doing and why. Rowland> > Regards, > Marc >