search for: pam_smb_auth

...n required pam_unix_session.so I want to authenticate against an SMB server, I added the following /etc/pam_smb.conf: SPECTRON-MSIM MAIN MAIN # documentation says I need 2 servers (only have one, is this ok) and changed the pam.d/dovecot to: auth required pam_smb_auth.so account required pam_smb_auth.so # there is no pam_smb_acct password required pam_smb_auth.so # there is no pam_smb_passwd session required pam_smb_auth.so # there is no pam_smb_session and it doesn't work. I obviously did something wrong, but don't know w...

...to reauthenticate, because they've already done so with the PDC via their Windows box. Is there a way to set up PAM so that authenticated Windows users who ssh into the Linux box don't need to type a password? (This will make using CVS much easier) I have looked at winbind, pam_smb_pass, pam_smb_auth and pam_ntdom but can't seem to find any clearcut answer to this question. Any help you could give me would be most appreciated. Regards, Mitch. -- mailto:mjd@alphalink.com.au

...db/pdb_ldap.c Compiling passdb/pdb_nisplus.c Compiling printing/pcap.c Compiling printing/print_svid.c .................... ........... ........... ................... Compiling utils/make_unicodemap.c Linking bin/make_unicodemap Compiling utils/smbcacls.c Linking bin/smbcacls Compiling pam_smbpass/pam_smb_auth.c with -KPIC "pam_smbpass/pam_smb_auth.c", line 85: warning: argument #2 is incompatible with prototype: prototype: pointer to pointer to char : "/usr/include/security/pam_appl.h", line 211 argument : pointer to pointer to const char "pam_smbpass/pam_smb_aut...

HI, When I add a samba user with smbpasswd -a command how do I tell I am using pam_smb_auth to authenticate against MS AD running on Red Hat Linux? Thanks, ------------------------------------------------------- Puneet Talwar Unix Administrator

...Hat 9 workstations to authenticate via an NT 4 PDC. here is my /etc/pam.d/login file, auth required /lib/security/pam_securetty.so auth required /lib/security/pam_nologin.so auth sufficient /lib/security/pam_pwdb.so shadow nullok auth required /lib/security/pam_smb_auth.so nolocal account required /lib/security/pam_pwdb.so password required /lib/security/pam_cracklib.so password required /lib/security/pam_pwdb.so nullok use_authtok md5 shadow session required /lib/security/pam_pwdb.so session optional /lib/security/pam_console...

...Now, the actual swapout of a mail server is relatively straightforward and (somewhat) easy to do. But this one had a wrench -- I had to authenticate off of an NT4 domain. There were some other, smaller, wrenches as well, but they have nothing to do with this story. Lost, I started out simple -- pam_smb_auth. I compiled this and examined the code and installed it and tried to authenticate, and recompiled and reinstalled and tried again, and recompiled and reinstalled... This went on for a couple of hours, each time trying something a little bit differently. I looked at other pam_smb_auth setups, and...

...tp://samba.gorski.net/samba/ftp/ Once installed with "rpm ?Uvh pam_smb.rpm", configuration is handled by changing the PAM login and ppp information in /etc/pam.d /etc/pam.d/login: auth required /lib/security/pam_securetty.so auth required /lib/security/pam_smb_auth.so # Added #auth required /lib/security/pam_pwdb.so shadow nullok # Deleted auth required /lib/security/pam_nologin.so account required /lib/security/pam_pwdb.so password required /lib/security/pam_cracklib.so password requi...

Hi all, I have a samba 2.2.8a install runing on a debian woody. The samba is working fine and I am able to map shared drives. I want to use a Primary Domain Controller to authenticate users. I have included the necessary options in smb.conf, # separate domain and username with '+', like DOMAIN+username winbind separator = + # use uids from 10000 to 20000 for domain users winbind uid

...6 cyrus-sasl-2.1.21 m4-1.4.4flex-2.5.31 autoconf-2.59 libiconv-1.9.1 gcc-3.4.2 bison-2.1 automake-1.9 libtool-1.5.22 and have got samba authenticating against our 2003 AD servers, however we now discovered that someone has setup xdm to use pam authentication to the old NT4 domain using xdm.pam and pam_smb_auth.so.1 weve tried repointing the pam_smb.conf file to the new domain controllers and it still wont authenticate is pam_smb still in use or is there a better way to do this? Thanks Rich This e-mail and any attachment is for authorised use by the intended recipient(s) only. It may contain propriet...

...s will be destroyed the next time authconfig is run. auth required /lib/security/$ISA/pam_env.so auth sufficient /lib/security/$ISA/pam_unix.so likeauth nullok auth sufficient /lib/security/$ISA/pam_ldap.so use_first_pass #auth sufficient /lib/security/$ISA/pam_smb_auth.so use_first_pass #auth sufficient /lib/security/$ISA/pam_smb_auth.so use_first_pass nolocal auth required /lib/security/$ISA/pam_deny.so account required /lib/security/$ISA/pam_unix.so account sufficient /lib/security/$ISA/pam_localuser.so account [defaul...

.../pam.d/system-auth #%PAM-1.0 # This file is auto-generated. # User changes will be destroyed the next time authconfig is run. auth required /lib/security/$ISA/pam_env.so auth sufficient /lib/security/$ISA/pam_unix.so likeauth nullok auth sufficient /lib/security/$ISA/pam_smb_auth.so use_first_pass nolocal auth required /lib/security/$ISA/pam_deny.so account required /lib/security/$ISA/pam_unix.so password required /lib/security/$ISA/pam_cracklib.so retry=3 type= password sufficient /lib/security/$ISA/pam_unix.so nullok use_authtok md5 sh...

...d.so session required /lib/security/pam_mkhomedir.so skel=/etc/skel umask=0022 /etc/pam.d/samba #%PAM-1.0 auth required pam_nologin.so auth required pam_env.so auth required pam_stack.so service=system-auth auth sufficient pam_ldap.so auth sufficient pam_smb_auth.so use_first_pass auth sufficient pam_unix.so likeauth nullok try_first_pass auth required pam_deny.so account required pam_stack.so service=system-auth session required pam_stack.so service=system-auth password required pam_stack.so service=system-auth /etc/pam.d/syste...

Hello. I have a linux-based system that acts as a cvs-server on an NT-domain. The cvs-repository is reached whith ssh. My comments are for version 1.2.2 (debian distribution 1.2.2-1). I made a pam-module for adding users automatically when they have been authorized by the pam_smb_auth. Problem is that sshd checks if the user exists in passwd before going to pam for authorization. I made a very nasty hack to sshd that changed the behaviour so that the pw-struct got some defaults instead of pw from getpwnam() if allowed_user() returns false. However, I would rather use a real v...

...sers that already exist on the W2K DC and I thought samba and winbindd would do just that. Can anyone give me any suggestions? I have the following configured in: /etc/nsswitch.conf : password files winbind groups files winbind /etc/pam.conf : other auth required /usr/lib/security/pam_smb_auth.so /usr/local/samba/lib/smb.conf # Global parameters [global] workgroup = VTLABS-CADLAB netbios name = STATION02 server string = cadserver interfaces = hme0 security = DOMAIN encrypt passwords = Yes password server =...

...ce to modify the user-password under linux (with "passwd"). only the unix-password-hash is changed! the pam_smbpass module is clearly the wrong approach, since it is trying to modify a local smbpasswd-file (which does not exist, since the smbpasswords are stored on the ldap-server) the pam_smb_auth is clearly wrong, since it does authentification (instead of password-changing) but could connect to a remote PDC. the pam_smb_passwd might be right, but there are no debian-packages, i didn't managed (yet) to compile, and anyhow it seems to be "not for production use" of course m...

...tly trust users in the "wheel" group. #auth sufficient /lib/security/pam_wheel.so trust use_uid # Uncomment the following line to require a user to be in the "wheel" group. #auth required /lib/security/pam_wheel.so use_uid #auth required /lib/security/pam_smb_auth.so #auth required /lib/security/pam_stack.so service=system-auth account required /lib/security/pam_stack.so service=system-auth password required /lib/security/pam_stack.so service=system-auth session required /lib/security/pam_stack.so service=system-auth session o...

Hi, I've to migrate transparently a NT4 PDC to a SAMBA-LDAP-PDC with 1000 users. Each user has a roaming profile on the NT server. Of course, I want to migrate all the roaming profiles automaticaly on the Samba server without any intervention on clients ! How can do that ? How to preserve the ownership of each profile ? Thank you, -- Rapha?l Berghmans <rberghmans@arafox.com>

...------------------ #%PAM-1.0 # This file is auto-generated. # User changes will be destroyed the next time authconfig is run. auth required /lib/security/$ISA/pam_env.so auth sufficient /lib/security/$ISA/pam_unix.so likeauth nullok auth sufficient /lib/security/$ISA/pam_smb_auth.so use_first_pass nolocal auth sufficient /lib/security/$ISA/pam_winbind.so use_first_pass auth required /lib/security/$ISA/pam_deny.so account required /lib/security/$ISA/pam_unix.so account sufficient /lib/security/$ISA/pam_winbind.so use_first_pass passwor...

Hi, I'm running a Debian Sarge box that I want to authenticate against a Win 2003 Server. I understand that the old RH way of doing it was to use pam_smb_auth.so, which was easy to set up but inherently insecure. So, I've configured pam, winbind and samba, but obviously not quite correctly. When I try to su to a user with a windows password it fails and I get the following error in /var/log/auth.log: pam_winbind[12063]: request failed: No such u...

...n some older hardware with the 3.20 samba packages. My wbinfo commands all seem to work fine. I've tried these two /etc/pam.d/httpd files: auth required /lib/security/pam_winbind.so debug account required /lib/security/pam_winbind.so debug and auth required /lib/security/pam_smb_auth.so debug nolocal account required /lib/security/pam_permit.so The former gives me this in the messages log file: Aug 30 14:50:55 sbs-linux-01 pam_winbind[2178]: Verify user `bking' Aug 30 14:50:55 sbs-linux-01 pam_winbind[2178]: write to socket failed! Aug 30 14:50:55 sbs-linux-01 pam_wi...