search for: audit_auth

Hello Rowland, If someone wants full_audit, will adding 'vfs objects = full_audit' on a DC also have dfs_samba4 and acl_xattr enabled just because running on a DC, or would this cause both defaults to be turned off? Thanks, Joachim -----Urspr?ngliche Nachricht----- Von: samba <samba-bounces at lists.samba.org> Im Auftrag von Rowland Penny via samba Gesendet: Montag, 21. August 2023

...ounts,DC=samdom,DC=com' '(objectClass=user)' Enter LDAP Password: ldap_bind: Invalid credentials (49) ??????? additional info: 80090308: LdapErr: DSID-0C0903A9, comment: AcceptSecurityContext error, data 532, v1db1 # Apparently this seems to mean "expired"... /var/log/samba/audit_auth.log: { ? "timestamp":"2023-10-28T11:38:53.865118+0200", ? "type":"Authentication", ? "Authentication":{ ??? "version":{ ????? "major":1, ????? "minor":3 ??? }, ??? "eventId":4625, ??? "logonId&qu...

...Invalid credentials (49) > ??????? additional info: 80090308: LdapErr: DSID-0C0903A9, comment: > AcceptSecurityContext error, data 532, v1db1 > # Apparently this seems to mean "expired"... Perhaps, perhaps not, it could just be an incorrect password. > > /var/log/samba/audit_auth.log: > { > ? "timestamp":"2023-10-28T11:38:53.865118+0200", > ? "type":"Authentication", > ? "Authentication":{ > ??? "version":{ > ????? "major":1, > ????? "minor":3 > ??? }, > ??? &q...

On Fri, 27 Oct 2023 23:48:22 +0200 Kees van Vloten via samba <samba at lists.samba.org> wrote: > Hi Team, > > Is it possible to make a LDAP-query that returns whether an account > is expired or not? > > I am aware that it is possible to do the maths against the > "accountExpires" attribute, but that requires some scripting around > the query. > >

...d back in git history > > > if something > > > changed on the configuration of self-service-password but > > > recently there > > > were no changes (last was in Feb. 22). > > > > > > > > > The audit_auth.log on the DC just shows an expired > > > message and that's it: > > > > > > {"timestamp": "2023-10-26T20:21:10.245303+0200", "type": > > > "Authentication", "Authentication": {"...

...> As such the tool still works fine, except that it is no longer possible >> to change expired passwords. I looked back in git history if something >> changed on the configuration of self-service-password but recently there >> were no changes (last was in Feb. 22). >> The audit_auth.log on the DC just shows an expired message and that's it: >> {"timestamp": "2023-10-26T20:21:10.245303+0200", "type": >> "Authentication", "Authentication": {"version": {"major": 1, "minor": >> 3}...

...s (49) >> ??????? additional info: 80090308: LdapErr: DSID-0C0903A9, comment: >> AcceptSecurityContext error, data 532, v1db1 >> # Apparently this seems to mean "expired"... > Perhaps, perhaps not, it could just be an incorrect password. > >> /var/log/samba/audit_auth.log: >> { >> ? "timestamp":"2023-10-28T11:38:53.865118+0200", >> ? "type":"Authentication", >> ? "Authentication":{ >> ??? "version":{ >> ????? "major":1, >> ????? "minor...