Displaying 20 results from an estimated 91 matches for "shadowmax".
2009 Jan 27
3
Symlink shared mailboxes and system_user extra field
.../boites)
I made the userdb (prefetch) return the system_user extra_field (for now, I'm
using an used LDAP attribute - I will create a new attribute in my schema
later) :
pass_attrs = uid=user,userPassword=password,homeDirectory=userdb_home,,,uidNumber=userdb_uid,gidNumber=userdb_gid,shadowMax=userdb_system_user
and it seems to be actually returned :
Jan 27 09:34:10 munster3 dovecot: auth(default): ldap(foobar,157.99.64.42): result: uid(user)=foobar uidNumber(userdb_uid)=xxx gidNumber(userdb_gid)=xxx homeDirectory(userdb_home)=/home1/xxx/foobar userPassword(password)=<hidden&g...
2004 Jul 05
1
Accounts are getting disabled
...objectClass: inetOrgPerson
objectClass: person
objectClass: organizationalPerson
objectClass: top
objectClass: sambaSamAccount
cn: alexander-cristea
sn: alexander-cristea
uid: alexander-cristea
homeDirectory: /home/kl-1g3/alexander-cristea
gecos: "kl-1g3"
loginShell: /bin/sh
shadowMin: 1
shadowMax: 99999
shadowWarning: 14
sambaPwdMustChange: 1800000000
gidNumber: 112
sambaPrimaryGroupSID: S-1-5-21-3371203057-3264423045-2392767973-1225
uidNumber: 5248
sambaSID: S-1-5-21-3371203057-3264423045-2392767973-11496
sambaProfilePath: \\WILMA2\profile
sambaAcctFlags: [UX ]
The same user monday...
2009 Jan 28
1
Confused about permissions needed for shared mailbox
...wxrws--- 1 root doveshared 0 Jan 26 18:25 public/.box/dovecot-shared
provided that my prefetch userdb returns system_user, as I think the following says in dovecot-ldap.conf :
pass_attrs = uid=user,userPassword=password,homeDirectory=userdb_home,,,uidNumber=userdb_uid,gidNumber=userdb_gid,shadowMax=userdb_system_user
and providedt that in LDAP shadowMax: 80 (whatever value).
But this doesn't seem to work.
By the way : Am I supposed to have a dovecot-shared file in public as well
(that is not only in public/.box) ?
3) let's say I try ACLs with the same setup (anyone <all permiss...
2010 Jul 26
1
OpenLDAP authentication, account expired when it's not.
...to set up LDAP authentication for CentOS workstations, but
can't get it to authenticate properly. Authentication fails saying the
account has expired when I know for certain that it has not (e.g.
ldapsearch authenticated with the appropriate uid and password returns
shadowLastChange 14816 and shadowMax 99999).
The last time I did this seriously for authentication was using Apple iMacs
authentication against a SuSE Linux machine so it's entirely possible I'm
not doing the right thing today. Most of the sites where we're using ldap
and nss are not authentication, but simply going to u...
2012 Jul 24
0
(no subject)
...Script: logon.bat
sambaProfilePath: \\PDC-SRV\profiles\secretaria
sambaHomePath: \\PDC-SRV\secretaria
sambaHomeDrive: H:
sambaLMPassword: 86A5FB68C21C24AAAAD3B435B51404EE
sambaAcctFlags: [U]
sambaNTPassword: 6755830B5B0326545526B270AFFF4EEA
sambaPwdLastSet: 1343154178
sambaPwdMustChange: 1347042178
shadowMax: 45
root at debian-fileserver:~# ldapsearch -xLLL uid=rodrigo
dn: uid=rodrigo,ou=Users,dc=defensoria,dc=net
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: shadowAccount
objectClass: sambaSamAccount
cn: rodrig...
2006 Aug 07
2
'ldap machine suffix' is ignored?
...="ou=users,dc=mydomain,dc=ru" scope=1 deref=0
filter="(&(objectClass=posixAccount)(uid=winhost$))"
Aug 7 16:35:12 main slapd[28229]: conn=19118 op=3 SRCH attr=uid
userPassword uidNumber gidNumber cn homeDirectory loginShell gecos
description objectClass sh
adowLastChange shadowMax shadowExpire
Aug 7 16:35:12 main slapd[28229]: conn=19118 op=3 SEARCH RESULT tag=101
err=0 nentries=0 text=
Aug 7 16:35:12 main slapd[28229]: conn=19118 op=4 SRCH
base="ou=users,dc=mydomain,dc=ru" scope=1 deref=0
filter="(&(objectClass=posixAccount)(uid=winhost$))"
Aug...
2007 Dec 07
1
CentOP 5.1 Problem with smbldap-passwd
...from rpmforge.
Then i use smbldap-passwd <user> i get an error:
smbldap-passwd test
Changing UNIX and samba passwords for test
New password:
Retype new password:
Use of uninitialized value in string at /usr/sbin/smbldap-passwd line
277, <STDIN> line 2.
Failed to modify UNIX password: shadowMax: value #0 invalid per syntax
at /usr/sbin/smbldap-passwd line 285, <STDIN> line 2.
In 5.0 it works without errors.
I hope you can help me
Tanks,
Sebastian
Here is the part of the file
//////////////////////////////////////////////////////////////////////
# Update 'userPassword' f...
2011 Aug 11
1
LDAP - Shadow options
dear All,
I'm trying to set Shadow options in Ldap with the help of phpLDAPadmin.
This is *what I know :
* */Shadowmax : /maximum nr of days a pw can be valid
* /ShadowLastchange : /contains the last change of the shadow file
* Shadowwarning : nr of days before expiration to warn user.
*What I'm trying *to do is have the users 's passwork expire, that works ok.
But how can I have them get a warning message...
2003 Jun 26
0
Accounts randomly clobber on user add (LDAP, XP, Samba PDC)
...erson
objectClass: inetOrgPerson
objectClass: account
objectClass: top
objectClass: posixAccount
objectClass: shadowAccount
objectClass: sambaAccount
uid: rkhan
uidNumber: 1040
gidNumber: 1000
givenName: R
sn: Khan
cn: R Khan
homeDirectory: /home/employees/rkhan
loginShell: /bin/false
gecos: R Khan
shadowMax: 900
shadowWarning: 7
shadowInactive: 2
ou: IT
shadowLastChange: 12101
userPassword:: secret
rid: 3236
smbHome: \\xo\homes
AFTER (BAD):
dn: uid=rkhan,ou=Employees,dc=wildpackets,dc=com
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: account
objectClass...
2003 Jul 12
0
Samba-2.2.8a & LDAP - Can't join Domain - SID mapping error
...e root user this way in LDAP:
dn: uid=root,ou=People,dc=virginiabeach,dc=net
objectClass: top
objectClass: account
objectClass: posixAccount
objectClass: shadowAccount
objectClass: sambaAccount
uidNumber: 0
gidNumber: 0
homeDirectory: /home/root
loginShell: /bin/bash
gecos: root
shadowLastChange: 0
shadowMax: 0
shadowWarning: 0
userPassword: {SSHA}GN3hrCs7c8Kgd93df23838hHH
uid: root
pwdLastSet: 1057974221
logonTime: 0
logoffTime: 2147483647
kickoffTime: 2147483647
pwdCanChange: 2147483647
pwdMustChange: 2147483647
displayName: root
cn: root
smbHome: \\MY_PDC\homes
homeDrive: Z:
scriptPath: logon.cmd
pr...
2004 Mar 23
1
LDAP-Schema??
Hello,
there are a some fields in my LDAP-Tree, I do not understand.
What can I do with this fields?
# sambaKickoffTime
# sambaLogoffTime
# sambaLogonTime
# sambaMungedDial
Is there any endeavor by the maintaner to use the following fields?
# shadowExpire
# shadowLastChange
# shadowMax
# shadowWarning
by,
matze
2007 Oct 10
0
strange uid=domain\5Cuser ldap search requests
...ssages in my slapd logs:
conn=14143 op=2 SRCH base="ou=XXX" scope=1 deref=0
filter="(&(objectClass=posixAccount)(uid=domain\5Cuser))"
conn=14143 op=2 SRCH attr=uid userPassword uidNumber gidNumber cn
homeDirectory loginShell gecos description objectClass shadowLastChange
shadowMax shadowExpire
conn=14143 op=2 SEARCH RESULT tag=101 err=0 nentries=0 text=
always repeating exactly 3 times and then
conn=14143 op=5 SRCH base="ou=XXX" scope=1 deref=0
filter="(&(objectClass=posixAccount)(uid=user))"
conn=14143 op=5 SRCH attr=uid userPassword uidNumber gid...
2008 Sep 09
1
shadowLastChange problem with Samba+OpenLDAP
...mb.conf:
ldap passwd sync = Yes
passwd program = /usr/sbin/smbldap-passwd %u
passwd chat = New password:%n\nRetype new password:%n\n
unix password sync = no
...
1. When I change passwords from Windows, everything is fine except the
shadowLastChange field is never updated when shadowMax is nonzero.
So the password age feature is not functioning as expected.
2. Later I found shadowLastChange could be updated by smbldap-passwd, so I
changed
'unix password sync' from no to yes. In this case, change_oem_password()
will
return NT_STATUS_ACCESS_DENIED when the passwor...
2008 May 17
7
SAMBA PDC with LDAP backend syncing unix/samba accounts ...
...s normal user, which i have
enabled
with "smbldap-usermod -a yogesh"
smbldap-usershow yogesh
dn: uid=yogesh,ou=People,dc=biomax,dc=de
uid: yogesh
cn: yogesh
objectClass:
account,posixAccount,top,shadowAccount,sambaSamAccount
userPassword: {MD5}.SOMELONGHASH ....
shadowLastChange: 12900
shadowMax: 10000
loginShell: /bin/bash
uidNumber: 668
gidNumber: 100
homeDirectory: /sk-home/yogesh
sambaPwdLastSet: 0
sambaLogonTime: 0
sambaLogoffTime: 2147483647
sambaKickoffTime: 2147483647
sambaPwdCanChange: 0
sambaPwdMustChange: 2147483647
displayName: System User
sambaSID: S-1-5-21-4033729970-10536222...
2009 Jun 26
2
smblap-useradd problem
...:
top,person,organizationalPerson,inetOrgPerson,posixAccount,shadowAccount
cn: ploup
sn: ploup
givenName: ploup
uid: ploup
uidNumber: 1095
gidNumber: 513
homeDirectory: /home/ploup
loginShell: /bin/bash
gecos: System User
userPassword: {SSHA}Hx0Myq136qqRFTLWk1zf49oJ3iROR3lP
shadowLastChange: 14421
shadowMax: 3650
fano2:~# smbldap-usermod -a ploup
Can't call method "get_value" on an undefined value at /usr/sbin/smbldap-
usermod line 183.
fano2:~# smbldap-usershow ploup
dn: uid=ploup,ou=Users,dc=faberNoveldap,dc=local
objectClass:
top,person,organizationalPerson,inetOrgPerson,posixAccount...
2003 Oct 26
1
Some Users not shown and profiles won't work
...ctClass: shadowAccount
objectClass: inetOrgPerson
objectClass: person
objectClass: organizationalPerson
objectClass: top
objectClass: sambaSamAccount
cn: hein
uid: hein
gidNumber: 106
homeDirectory: /home/lehrer/hein
uidNumber: 1508
gecos: Alfred Hein, Lehrer, IST
loginShell: /bin/bash
shadowMin: 0
shadowMax: 99999
sambaProfilePath: \\wilma2\profile
displayName: Alfred Hein, Lehrer, IST
sambaHomeDrive: H:
givenName: Alfred
sn: Hein
shadowExpire: 21915
sambaPwdCanChange: 1041375601
sambaPwdMustChange: 1799967609
sambaAcctFlags: [UX ]
sambaDomainName: WMS-NET
sambaPrimaryGroupSID: S-1-5-21-337120...
2003 Nov 16
2
SAMBA 3.0.0 PDC + LDAP - Adding Computer Account
...et
uid: data$
cn: Computer Account
objectClass: account
objectClass: posixAccount
objectClass: top
objectClass: shadowAccount
uidNumber: 1007
gidNumber: 1003
homeDirectory: /dev/null
gecos: Computer Account
loginShell: /sbin/nologin
description: Computer Account
shadowLastChange: 12372
shadowMin: 0
shadowMax: 99999
shadowWarning: 7
when I do a getent passwd the computer account data$ shows up in the
listing so by all accounts the account exists. As for LDAP ACL the Samba
admin has write access to the Computer ou in the Directory so it should be
able to update the information. I did find out that in t...
2018 Jul 04
5
classicupgrade questions
...e
of them, as far as I can remember, was user "anger":
dn: uid=anger,ou=People,dc=nspuh,dc=cz
objectClass: shadowAccount
objectClass: person
objectClass: inetOrgPerson
objectClass: OXUserObject
objectClass: posixAccount
objectClass: top
objectClass: sambaSamAccount
uid: anger
shadowMin: 0
shadowMax: 9999
shadowWarning: 7
shadowExpire: 0
cn: anger
preferredLanguage: EN
userCountry: Czech Republic
mailEnabled: OK
lnetMailAccess: TRUE
OXAppointmentDays: 5
OXGroupID: 500
OXTaskDays: 5
OXTimeZone:: RXVyb3BlL3ByYWd1ZSA=
loginShell: /usr/bin/ksh
uidNumber: 270
gidNumber: 20
homeDirectory: /home/ange...
2018 Jul 09
1
Fwd: classicupgrade questions
...as far as I can remember, was user "anger":
dn: uid=anger,ou=People,dc=nspuh,dc=cz
objectClass: shadowAccount
objectClass: person
objectClass: inetOrgPerson
objectClass: OXUserObject
objectClass: posixAccount
objectClass: top
objectClass: sambaSamAccount
uid: anger
shadowMin: 0
shadowMax: 9999
shadowWarning: 7
shadowExpire: 0
cn: anger
preferredLanguage: EN
userCountry: Czech Republic
mailEnabled: OK
lnetMailAccess: TRUE
OXAppointmentDays: 5
OXGroupID: 500
OXTaskDays: 5
OXTimeZone:: RXVyb3BlL3ByYWd1ZSA=
loginShell: /usr/bin/ksh
uidNumber: 270
gidNumber: 20
homeDirect...
2010 Jul 27
2
Samba LDAP ignores group information
...les\fish1
sambaHomePath: \\REALMSERV\fish1
sambaHomeDrive: U:
sambaLMPassword: C665AEE66EF2A261AAD3B435B5143E3E
sambaAcctFlags: [U]
sambaNTPassword: 84AC02807D3D1C7000A79BD0E97BAEFEF
sambaPwdLastSet: 1280219188
sambaPwdMustChange: 2144132788
userPassword: {CRYPT}c28JIqzpe43e
shadowLastChange: 14817
shadowMax: 9999
Here's /etc/ldap.conf
base dc=example,dc=com
uri ldapi:///127.0.0.1
uri ldap://127.0.0.1
ldap_version 3
binddn cn=admin,dc=example,dc=com
bindpw mysecret
rootbinddn cn=admin,dc=example,dc=com
scope sub
bind_policy soft
pam_filter objectclass=posixAccount
pam_login_attribute uid
pam_chec...