similar to: pdbedit "bad lockout attempt" does not work

I have been trying to create some administration guidline to adding users and groups in a Samba 3.0 PDC. I have most of the task documented. The problem I run into is where can I set the attribute for a user to change their password on next logon. Any help is appreciated. Terrance Bey

Brief history, originally setup as Ubuntu 7.10. Upgraded to 8.04.1LTS, Samba 3.0.28 and has latest updates installed as of this morning. Currently Samba is configured to use smbpasswd for passdb backend. As tdbsam has become the peferred backend, would like to migrate to tdbsam. When I attempt "pdbedit -i smbpasswd -e tbdsam" I get the following result: "No builtin backend found,

Hi all, Just wondering what Samba administration tool is the most frequently used ? What tool do admins use daily ? I've tried Cmd line / Samba tools, Swat, Webmin, LAM... and still haven't found a full-featured one and *user-friendly* one... Many Thanks :) Ganael.

Hi All, Just upgraded a test box to 3.0.23b and discovered some changes that cause a panic. I had an smb.conf with passdb backend = tbdsam guest The guest bit now causes panic action. log.smbd complains ... "No builtin nor plugin backend for tdbsam guest found" Either the build options have changed or the guest operative has issues. Works OK without guest, but it's been

Hello list, I have a samba 3.5.6 running on a Debian squeeze machine. This box is running since more than a year without any problems. Since a couple of days we have the following problem. One Win7 user doesn't get his user profile any more The log file tells: [2013/03/04 07:43:14.641151, 1] auth/auth_util.c:580(make_server_info_sam) User WIN7MACHINE$ in passdb, but getpwnam() fails!

Okay, have a small office running Samba on MDK 10.1 and XP workstations: samba-server-3.0.10-0.1.101mdk samba-client-3.0.10-0.1.101mdk samba-vscan-clamav-3.0.10-0.1.101mdk samba-common-3.0.10-0.1.101mdk Using tbdsam as our backend. I recently added a new user, however this user does not run the regular login script for some reason net use h: \\FILESERVER\homes /YES net

Hi All, I just upgraded a workstation server to a PDC server. I am using tbdsam as my user database. Question 1: As a workgroup server, I created my groups in /etc/group (groupadd). Is this still the case? Do I also need to tell Samba about a different database for groups? Question 2: occasionally I get asked for the user with "administrator's" privileges. Do I need to

Hi, I'm trying to get samba (v3.0.23d) going on an embedded system. Our initial requirement is to get a very simple windows share operational. No security required, read only anonymous access. With this in mind we followed the guidelines as per the samba documentation: http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/StandAloneServer.html#simplynice Samba (smbd) crashes with a

Samba Version 3.6.3 on Ubuntu 12.04 tbdsam back end. I discovered a couple of accounts we created before the Domain was configured was was an account named "administrator" intended to be the Smaba Administrator account. In order to change the domain ai ran this command # pdbedit -I "DOMAINNAME" -U username it worked on a number of accounts when I tried it on administrator

Hi, I'm building up a new server to replace an old one running Samba2. The new server is running Samba 3 and I'm having a problem getting it to recognise my groups in /etc/groups. I'm using the old smbpasswd backend, not the new tbdsam database. I've copied my smb.conf, and the files from /usr/local/private across to the new machine, as well as /etc/group and migrated the user

Hi, > You can try the Ogg DirectShow filter to get Windows support for Speex: > http://www.illiminable.com/ogg/ if you wait a little longer, I am trying to provide speex support for the ffmpeg project (www.ffmpeg.org). It does encode/decode to/from avi and wav, a support for ogg has not been done, and my question is, should it be necessary? I don't really like ogg in first place..

Hi, I have a Debian stable (woody aka 3.0) machine. I am moving my existing samba 2.x installation (that has users stored in smbpasswd) to samba 3.0.4 with LDAP as the backend. I am able to move the users to LDAP just fine. However, the password policy of bad lockout attempt does not seem to work. I installed the samba deb file from the samab.org site. I also have OpenLDAP slapd

Hopefully someone can put my mind at ease... I have about 10 W2K boxes with account lockout threshold of 5 failed logins and Additional Restrictions for Anonymous Connections set to 'No access w/o explicit anon. permissions' (Administrative Tools -> Security Settings -> Local Policies -> Security Options) I've set up a Samba server this week and in the past few days

All, I built and installed 3.0.7. I am trying to finalize my setup by limiting the user to 3 failed logon attempts. I used: ./pdbedit -P "bad lockout attempt" -C 3 This works fine for all users EXCEPT for the user with a matching Windows user name. In other words, if my windows user name is 'bender' and my samba user name is 'bender' the number of Bad logon attempts

All, I built and installed 3.0.7. I am trying to finalize my setup by limiting the user to 3 failed logon attempts. I used: ./pdbedit -P "bad lockout attempt" -C 3 This works fine for all users EXCEPT for the user with a matching Windows user name. In other words, if my windows user name is 'bender' and my samba user name is 'bender' the number of Bad logon attempts will

Hi, Samba-3 with LDAP backend is capable in this. I'm using it and it works. All you have to do, is to use LDAP and set proper account policies: $ pdbedit -P "bad lockout attempt" -C 5 (after 5 wrong password, user account will be locked out - samba sets password hashes to ***NOPASSWORD*** and user is unable to logon). $ pdbedit -P "min password length" -C 9 # password

Thanks Jim, that's understood. When I say AMBE isn't working well, I only mean from the audience acceptance point of view. Technically it is fine. It is exactly doing the job we had expected. It's the long standing wish that everyone wants... More for less. We are just seeking a bit of magic that just may not be there. Ideally finding a codec that can perform

Hello, I have a samba 4.1.5. I have created OUs and linked GPO to OU for account lockout policies. Account Lockout Duration: 15min Account Lockout Threshold: 5 invalid attempts Reset Account lockout counter after: 15min I have created a test account and logged in with an incorrect password more than 5 times to a machine. but the test account never locks and the computer never prompts me that

First of all, I want to say I have been using Samba AD for two years now (since just before 4.0 went stable), and it is an amazing product. We've implemented Active Directory & Group Policy for almost 50 computers and 100 users. Unfortunately, we are now being forced into switching to Windows DCs because Samba does not have an account lockout feature. Citrix (stupidly) does not have

I recently am migrating my PDC from NT4 to Samba 3.025. Apparently due to a mismatch between the capitalization of the Windows account and the Unix account (Administrator vs administrator) I managed to lock the account before catching the discrepenacy. # pdbedit -v administrator Unix username: Administrator NT username: Administrator Account Flags: [ULX Bad password count