search for: dshuristics

Hi, I am trying to debug an ldaps client that we would like use to change passwords for end-users. Currently this is failing with this: > [LDAP: error code 50 - error in module acl: insufficient access > rights during LDB_MODIFY (50)]; remaining name 'CN=ted t. > test,CN=Users,DC=samba,DC=company,DC=com' From what we understand, there are two ways to change a password: A) as an

...> And as a side-question: do we need to configure anything special, to > allow end-users to change their passwords? No. It is expected (and tested) to 'just work' as a modify on unicodePwd (utf16 password in " chars), or if enabled userPassword as utf8 (need to set the flag in dsHuristics just like Windows). Andrew Bartlett

Hi, I found some discussion here in 2010 about allowing/disallowing anonymous ldap access in samba4, however, nothing much recent comes up. I see that my samba4 does not allow anonymous access. Is there a way to enable it in samba4, like the way we had it with samba3/openldap? (we restricted access to sensitive info, but allowed anon search access to many user details like mail addresses,

Hello, can you say me how I can deny in my samba  that some aplication can read my active directory users anonymous. ** Alcatel Onetouch Idol 3 (5.5) ** en 06/01/2018 16:55, Andrew Bartlett via samba <samba at lists.samba.org> escribió: > > On Sat, 2018-01-06 at 11:11 +0000, Antonios Kalkakos via samba wrote: > > I have an AD with two Debian Stretch Samba 4.5.12 DCs. The Samba