similar to: Setting passwords via LDAP

Hello, This patch adds client and server support for transmitting the st_nlink field across SSH2_FXP_NAME and SSH2_FXP_ATTRS responses. Please let me know if there anything I can do to improve this patch. I am not subscribed to list so please CC me. Index: sftp-common.c =================================================================== RCS file: /cvs/src/usr.bin/ssh/sftp-common.c,v retrieving

Hi Sébastien, >> I'm trying to synchronize user accounts from LDAP to Samba 4 AD >> (using LSC) but it seems that password update through ldap is not >> allowed. >> >> I failed to find details about it, but can someone confirm that >> unicodePwd cannot be read / wrote trough a LDAPS connection ? Is >> there any workaround ? The unicodePwd attribute

On Mon, 28 Oct 2024 13:37:27 +0100 William David Edwards <wedwards at cyberfusion.nl> wrote: > Rowland Penny via samba schreef op 2024-10-28 12:50: > > On Mon, 28 Oct 2024 12:17:02 +0100 > > William David Edwards via samba <samba at lists.samba.org> wrote: > > > >> I think I might've found a solution while debugging. > >> > >> To

Rowland Penny via samba schreef op 2024-10-28 12:50: > On Mon, 28 Oct 2024 12:17:02 +0100 > William David Edwards via samba <samba at lists.samba.org> wrote: > >> I think I might've found a solution while debugging. >> >> To understand what I'm doing wrong with `unicodePwd`, I'm trying to >> get the LDAP request that LAM does, and compare it to

This patch adds all the missing commonly used UNIX attributes: st_dev, st_ino, st_nlink, st_rdev, st_blocks, st_blksize, st_ctime. In addition it extends st_atime and st_mtime to 64bits, and adds nanosecond resolution to all three timestamps. This is implemented as an extension to the ATTR message. This patch alone is sufficient for SSHFS to be able to use these attributes. The following two

Hi all I am trying to create a webapp to allow users to change their own passwords in Samba4 (perhaps, also in AD), using LDAP(s). But when I try to modify the user password using this code: dn: ........ changetype: modify replace: unicodePwd unicodePwd: "Temporal2" I get this error: 0x32 (Insufficient access; error in module acl: insufficient access rights during LDB_MODIFY (50))

Hi, I'm tying to set user's LDAP passwords using LDAP. `samba-tool user setpassword` does so by setting the write-only `unicodePwd` attribute, but turning it into binary and Base64-encoding it first: ``` if not isinstance(password, str): pw = password.decode('utf-8') else: pw = password pw = ('"' + pw + '"').encode('utf-16-le')

On Sun, 27 Oct 2024 15:08:14 +0100 William Edwards <wedwards at cyberfusion.nl> wrote: > > > Op 27 okt 2024 om 14:50 heeft Rowland Penny via samba > > <samba at lists.samba.org> het volgende geschreven: > > > > ?On Sun, 27 Oct 2024 13:58:56 +0100 > > William David Edwards via samba <samba at lists.samba.org> wrote: > > > >> Hi,

On Sun, 27 Oct 2024 13:58:56 +0100 William David Edwards via samba <samba at lists.samba.org> wrote: > Hi, > > I'm tying to set user's LDAP passwords using LDAP. > > `samba-tool user setpassword` does so by setting the write-only > `unicodePwd` attribute, but turning it into binary and > Base64-encoding it first: > > ``` > if not

Kees van Vloten via samba schreef op 2024-10-27 15:37: > Op 27-10-2024 om 15:31 schreef Rowland Penny via samba: >> On Sun, 27 Oct 2024 15:08:14 +0100 >> William Edwards <wedwards at cyberfusion.nl> wrote: >> >>>> Op 27 okt 2024 om 14:50 heeft Rowland Penny via samba >>>> <samba at lists.samba.org> het volgende geschreven: >>>>

On Sun, 27 Oct 2024 19:55:24 +0100 William David Edwards <wedwards at cyberfusion.nl> wrote: > Rowland Penny via samba schreef op 2024-10-27 15:31: > > On Sun, 27 Oct 2024 15:08:14 +0100 > > William Edwards <wedwards at cyberfusion.nl> wrote: > > > >> > >> > Op 27 okt 2024 om 14:50 heeft Rowland Penny via samba > >> > <samba

Rowland Penny via samba schreef op 2024-10-27 15:31: > On Sun, 27 Oct 2024 15:08:14 +0100 > William Edwards <wedwards at cyberfusion.nl> wrote: > >> >> > Op 27 okt 2024 om 14:50 heeft Rowland Penny via samba >> > <samba at lists.samba.org> het volgende geschreven: >> > >> > ?On Sun, 27 Oct 2024 13:58:56 +0100 >> > William

> Op 27 okt 2024 om 14:50 heeft Rowland Penny via samba <samba at lists.samba.org> het volgende geschreven: > > ?On Sun, 27 Oct 2024 13:58:56 +0100 > William David Edwards via samba <samba at lists.samba.org> wrote: > >> Hi, >> >> I'm tying to set user's LDAP passwords using LDAP. >> >> `samba-tool user setpassword` does so by

Hi Thanks all for your responses. The users can now change their own password adding and removing the unicodePwd attribute, using the correct method to generate the password value. Now, I have a problem, because the users who have the option to force to change the password in the next login checked, can't bind to the LDAP server in order to change their password. Is there any way to do this,

Op 27-10-2024 om 15:31 schreef Rowland Penny via samba: > On Sun, 27 Oct 2024 15:08:14 +0100 > William Edwards <wedwards at cyberfusion.nl> wrote: > >>> Op 27 okt 2024 om 14:50 heeft Rowland Penny via samba >>> <samba at lists.samba.org> het volgende geschreven: >>> >>> ?On Sun, 27 Oct 2024 13:58:56 +0100 >>> William David Edwards

Op 27-10-2024 om 21:11 schreef William David Edwards: > Kees van Vloten schreef op 2024-10-27 20:45: >> Op 27-10-2024 om 19:58 schreef William David Edwards: >>> Kees van Vloten via samba schreef op 2024-10-27 15:37: >>>> Op 27-10-2024 om 15:31 schreef Rowland Penny via samba: >>>>> On Sun, 27 Oct 2024 15:08:14 +0100 >>>>> William Edwards

Op 27-10-2024 om 19:58 schreef William David Edwards: > Kees van Vloten via samba schreef op 2024-10-27 15:37: >> Op 27-10-2024 om 15:31 schreef Rowland Penny via samba: >>> On Sun, 27 Oct 2024 15:08:14 +0100 >>> William Edwards <wedwards at cyberfusion.nl> wrote: >>> >>>>> Op 27 okt 2024 om 14:50 heeft Rowland Penny via samba

Kees van Vloten schreef op 2024-10-27 20:45: > Op 27-10-2024 om 19:58 schreef William David Edwards: >> Kees van Vloten via samba schreef op 2024-10-27 15:37: >>> Op 27-10-2024 om 15:31 schreef Rowland Penny via samba: >>>> On Sun, 27 Oct 2024 15:08:14 +0100 >>>> William Edwards <wedwards at cyberfusion.nl> wrote: >>>>

On Mon, 28 Oct 2024 12:17:02 +0100 William David Edwards via samba <samba at lists.samba.org> wrote: > I think I might've found a solution while debugging. > > To understand what I'm doing wrong with `unicodePwd`, I'm trying to > get the LDAP request that LAM does, and compare it to mine. > > As I temporarily switched to an unencrypted connection to be able

hi trying to create a user with ldap from a remote server. The user is created successfully. I'm failing setting the initial password. Setting the unicodePwd with kerberos administrator credentials with ldbmodify and the ldif below results in "00002035: setup_io: it's not allowed to set the NT hash password directly". searching the web I've found s4 mailinglist entries