similar to: Samba+LDAP (How to Expires an user Account on Specified date)

Hi, I currently migrate an existant earlier SAMBA (Version 2.2.9) / OpenLDAP (slapd 2.2.26) configuration to SAMBA (Version 3.0.25b-0.4E.6) / OpenLDAP (slapd 2.4.11). To preserve the compatibility with my schema.v2, my new smb.conf now contains : passdb backend = ldapsam_compat:ldap://w.x.y.z:389 (where w.x.y.z is the ldap server) Simultaneously, for same reason, i kept uncommented the

Hi all, Since a few months ago Samba ask each of our users to change password at log on every month and I have not been able to disable it. I found this page and follow the instructions: http://playingwithsid.blogspot.com/2010/12/change-samba-password-expiry-setting.html The default 'Password Must Change' policy was set to never and pdbedit shows 'Password Must Change: never'

http://bugzilla.mindrot.org/show_bug.cgi?id=511 Summary: PublickKeyAuthentication failures when account password expires Product: Portable OpenSSH Version: 3.4p1 Platform: All OS/Version: Solaris Status: NEW Severity: normal Priority: P2 Component: ssh AssignedTo:

I am currently running the latest build of samba-3.0.23a with a tdbsam backend. I have noticed for sometime now when I use pdbedit -c [X] username it sets the Account Flag X for password never expires but does not modify the Password must change for the user. Therefore even though the account flag is set the password still expires. Any thoughts would be greatly appreciated.

Hello, Dovecot does not fill expires table when moving messages to Trash or Junk folder. I looked all over mailing list and googled around and cannot find what could be wrong - pleas help :) Dict works for quota, so I presume connection to mysql is not a problem - mailuser has Select,Insert,Update,Delete privileges over quota and expires table (log below for deleting message) dovecot

Yes, but if the password never expires, I don't need to include it in the check the script performs. Ole On 14.02.2017 12:29, Rowland Penny via samba wrote: > On Tue, 14 Feb 2017 11:29:39 +0100 > Ole Traupe via samba <samba at lists.samba.org> wrote: > >> I see. This is the same with 512 and 514, I think. >> > An enabled user account is 512, if you add 2 to

http://bugzilla.mindrot.org/show_bug.cgi?id=511 Ulrich.Windl at rz.uni-regensburg.de changed: What |Removed |Added ---------------------------------------------------------------------------- Status|CLOSED |REOPENED Resolution|INVALID | ------- Additional Comments From Ulrich.Windl at

http://bugzilla.mindrot.org/show_bug.cgi?id=511 djm at mindrot.org changed: What |Removed |Added ---------------------------------------------------------------------------- Status|REOPENED |RESOLVED Resolution| |INVALID ------- Comment #9 from djm at mindrot.org 2005-10-23 22:22 -------

I used KUser to add a user to my system and after saving the changes I made KUser expired all user accounts except the newly created one. This meant I could only login as that new user and I could get root access. To fix this I rebooted the computer. When it gives you 10 seconds [or hit enter] I pressed any key but enter to get a prompt like this: ok Then at the prompt I booted into single

Hi, I need to mass-update my users in openldap so that their passwords don't expire (school teachers). Anyone have any ideas about what the best process would be for accomplishing this? Thanks... -Jeff -- Jefferson K. Davis Technology and Information Systems Manager Standard School District 1200 North Chester Ave Bakersfield, CA 93308 USA 661-392-2110 ext 120

Ok, maybe I haven't understood your idea then. Mine was: check a user's password expiry if (and only if) - the account requires a password - the password can expire - the account isn't disabled And those criteria are met if the userAccountControl value is "512". Oh wait: as you are checking bits, you have the SmartCard case covered as well, right? Ole On 14.02.2017

On Sun, 26 Mar 2017 20:51:26 -0400 Mark Foley wrote: > > On Sun, 26 Mar 2017 19:31:48 -0400 Mark Foley wrote: > > > > On Sun, 26 Mar 2017 19:53:01 +0100 Rowland Penny wrote: > > > > > > On Sun, 26 Mar 2017 14:32:53 -0400 > > > Mark Foley via samba <samba at lists.samba.org> wrote: > > > > > > > > > > as root: >

I'm in the process of setting up a Samba 4 PDC on Debian 8. I've set user passwords to expire after a day for testing purposes. When a user tries to log in when his password has already expired, he only gets a short "The user account has expired." message and then gets sent back to the username/password screen, effectively locking them out. Tested with Windows 10 and Windows 7.

Good day all I am developing a tool in perl to run on my sabma4-DC. This tool must check the password exp date and send a reminder when quite close. Now in order to do that, I need a command to extract the expiration date from samba 4. I have used pdbedit but it looks like the files "password must change" is not reporting correctlly the exp date, in fact I see: Unix username:

I have a controller that serves up images from a different location from /public/images/ by using send_file or send_data on /media/thumbs/ 38 for example In lighttpd I have: expire.url = ( "/media/" => "access 10 years", "/stylesheets/" => "access 10 years" , "/javascripts/" => "access 10 years",

Matt - thanks for the tip on passwdqc. That is not installed by default on Slackware, but it is in the SlackBuilds repository. I'll install it and check it out. On Mon, 27 Mar 2017 13:32:53 -0400 Matt Savin wrote: > > Hello Mark, > > Thank you for sharing! I would probably replace password length and > complexity check with: > > if [[ $(echo -e

Hi, I have OpenSuse 10.2 authenticating against NT 4 domain. OS: OpenSuse 10.2 i386 samba-3.0.23d-19.7 samba-winbind-3.0.23d-19.7 samba-client-3.0.23d-19.7 kernel: 2.6.18.8-0.5-default #1 SMP Everything was fine, until 2 days ago, when it started showing that my password will expire in 3 days. The problem is, that for sure on the domain controller this account is set with no password

Dear list, Is it possible to give a notification about password exprire warning to users authenticated by OpenLDAP when the users login via dovecot using IMAP or POP? For example, when you ssh to a server and/or run ldapsearch, you can be warned with password expire warning like below: # ssh testuser at localhost testuser at localhost's password: Your password will expire in 31 minute(s).

When the expire cronjob actually finds a folder needs pruning, does it then purge the row from the database? Or could it update the row with the "new" oldest message's expiration time? I guess I can test this for myself. I did just learn that emptying the Trash removes the row from the expires db. . . I had misconfigured expires here, and think I fixed it, but in checking

Aki-san, Thanks for your feedback. Whatever ways will do. For instance, in a thunderbird mail client, a pop-up message or notification email telling client that the password will be expired in XX days, something like this, would be nice. Thanks, Masaharu Kawada On 2016?06?08? 15:49, Aki Tuomi wrote: > > On 08.06.2016 09:37, mkawada at redhat.com wrote: >> Dear list, >>