Mandi! Marc Muehlfeld via samba In chel di` si favelave... [in the meantime, moved to 4.5...]> > Ahem, i've typed '--comploxity'... sorry... OK, option is available in > > samba-tool in 4.2, but does not seems to work: > This just turns off the need of complex passwords, but there are more > settings, such as minimum length, number of previous passwords not > allowed to reuse, etc. > See: > # samba-tool domain passwordsettings --helpOk. But still mean that, if i want to set a temporary password for users, i need to unset *all* password policy, set the password and then restore them? But really no one here misses that feature? ;-) Could be possible, at least, to compute password hash ''offline'' and then put them via brute-force 'ldbmodify'? Someone have some hints? Thanks. -- dott. Marco Gaiarin GNUPG Key ID: 240A3D66 Associazione ``La Nostra Famiglia'' http://www.lanostrafamiglia.it/ Polo FVG - Via della Bontà , 7 - 33078 - San Vito al Tagliamento (PN) marco.gaiarin(at)lanostrafamiglia.it t +39-0434-842711 f +39-0434-842797 Dona il 5 PER MILLE a LA NOSTRA FAMIGLIA! http://www.lanostrafamiglia.it/index.php/it/sostienici/5x1000 (cf 00307430132, categoria ONLUS oppure RICERCA SANITARIA)
On Wed, 21 Jun 2017 16:00:35 +0200 Marco Gaiarin via samba <samba at lists.samba.org> wrote:> Mandi! Marc Muehlfeld via samba > In chel di` si favelave... > > [in the meantime, moved to 4.5...] > > > > Ahem, i've typed '--comploxity'... sorry... OK, option is > > > available in samba-tool in 4.2, but does not seems to work: > > This just turns off the need of complex passwords, but there are > > more settings, such as minimum length, number of previous passwords > > not allowed to reuse, etc. > > See: > > # samba-tool domain passwordsettings --help > > Ok. But still mean that, if i want to set a temporary password for > users, i need to unset *all* password policy, set the password and > then restore them? > > But really no one here misses that feature? ;-) > >Just like Windows you can create a user with a password and then make them change the password when they login, see: samba-tool user create --help Specifically, the '--must-change-at-next-login' option.> Could be possible, at least, to compute password hash ''offline'' and > then put them via brute-force 'ldbmodify'? Someone have some hints? >There is also the possibility of doing this with samba-tool, see: samba-tool user setpassword --help Rowland
Mandi! Rowland Penny via samba In chel di` si favelave...> Just like Windows you can create a user with a password and then make > them change the password when they login, see:Sure, but initial password still have to complain to complexity rules. In my 'NT like' samba domains i was (ab)used to set initial password the same of the login, forcing the change on next login. Also, if users forgot the password, i reset to the login. I'm a bit ''confused'' about not able to do so now. And i'm a bit confused also because, if complexity rules apply, particulary if i set a password history of 5 password, i can set the default password to a mild complex one (eg, 'ChangeMe1') but i cannot set anymore two times. Probably is a dumb question, but... how you reset password for users that forgot their? More general questions in another thread... ;-) -- dott. Marco Gaiarin GNUPG Key ID: 240A3D66 Associazione ``La Nostra Famiglia'' http://www.lanostrafamiglia.it/ Polo FVG - Via della Bontà , 7 - 33078 - San Vito al Tagliamento (PN) marco.gaiarin(at)lanostrafamiglia.it t +39-0434-842711 f +39-0434-842797 Dona il 5 PER MILLE a LA NOSTRA FAMIGLIA! http://www.lanostrafamiglia.it/index.php/it/sostienici/5x1000 (cf 00307430132, categoria ONLUS oppure RICERCA SANITARIA)