similar to: CryptoCard - PAM or RADIUS?

Hi All, I havent heard a response back to my previous posts so I am now trying from a "broader" topic. What I have is the following: A 2 Form Factor Token Authentication system similar to RSA SecureID A Linux SAMBA 3.0.14a-Debian I've got the two systems authenticating against each other with RADIUS via PAM support. When I tell SAMBA to use this PAM support as well, I see the

Hi, I have just upgraded a server from Samba 2 to Samba 3 and some of the Windows clients are taking a long time to authenticate shares (1 or 2 minutes). Eventually the username/password box appears and then when you enter a correct password, all is fine - it is just the initial authentication. This is a simple UNIX password Samba server (with NIS) and I have set it to not use encrypted

I'm using FC8 Server with Samba 3.0.30-fc8 and have an erratic problem assecing the share. I have a Share that every one can acess and I use the nobody user to acess everithing without any problem, and from time to time when user tries to acess a file the share gets closed, than we have to resart the machine and it goes wel again. the log for one user is below why does it closes the

Hello! I was wondering if it's possible to make Windows NT and Samba 3 work togheter. I found an old question with the same problem I have. Samba 3 is not authenticating WinNT machines. My smb.conf is: [global] workgroup = DESQ-TESTE server string = Teste (Samba %v) interfaces = 143.106.19.25/255.255.255.192, 127. bind interfaces only = Yes encrypt passwords = No password server =

Hi Folks, so now I've managed to trick the authentication server to caching the one time passwords for me. I'm down to the last two problems: 1. Something odd that I've noticed is that when I use PAM authentication Windows clients are outright refused. When I enable "encrypted" passwords, therefor disabling PAM, I'm then able to log in but with the use of static

Hello, we migrate from Samba 2.2 to Samba 3.020b. We have the problem now, that some clients can not connect to the Samba Server. In the log there are messages like that: [2006/02/23 08:49:20, 2] smbd/sesssetup.c:setup_new_vc_session(704) setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources. [2006/02/23 08:49:20, 2] auth/pampass.c:smb_pam_auth(514)

from samba 3.0.9 to 3.0.13 I can not access my shares from a NT4 box as usual before upgrading. I can access samba shares from linux via mount //server/testuser /mnt -o username=testuser,password=testpass as before. Even the newest version (3.0.14a) from samba.org doesnt't help. What has happened to samba ??? Any hints ?? Thanks for your thoughts, G?tz.

Hi, I had a contractor write a patch to allow CryptoCard support in OpenSSH. It works with portable openssh-2.1.1p4, and it was posted to the SSH mailing lists, but I see that it hasn't been included in the openssh-2.2.0p1 release. Would it be possible to include this patch in the official release? The reason why I ask is because it will not be difficult to do that, it will support the

Hi again, as I am finally back working on the problem, I add the smb.conf in the hope somebody can see what I am doing wrong. Samba Version is 3.0.14a from Debian Sarge. Attached is my smb.conf - there may be some unnecessary things in it meanwhile due to too much trying, but anyways. Meanwhile there are some more clients that have problems with password authentication. One thing I noticed is

I'm running version 2.0 beta. During the initial installation, I configured Samba to authenticate with an NT server. It worked as expected. Now, I want to reconfigure Samba with security = user. I've set encryption = no (and insured that the NT client is sending plain text passwords), and I've removed the references in the smb.conf file to PASSWORD SERVER =. As I expected, the NT

We are a primarily Linux company with a NIS backend, but we keep a couple "bridge boxes" for Windows users (on a Windows PDC) to connect to their unix accounts and access data. Under Samba 2.2, this was fairly easy with "encrypt passwords = no" turned on. But I can't figure out how to make it work with Samba 3. Does Samba 3 not support a unix passwd backend, or am I

I was hoping to set up fail2ban to block IP addresses that generate too many Samba password failures, but it needs a syslog message with the IP address of the computer that failed password authentication. Unfortunately, Samba doesn't seem to do this in my environment. Here's a sample error message: smbd[312]: smb_pam_passcheck: PAM: smb_pam_auth failed - Rejecting User brutus ! I

Hi everyone; I'm having some trouble with samba on a centos 5 box; the box has been configured to authenticate against an ldap server via authconfig....authentication for normal use (console, ssh) works great....I'm having some trouble with samba using single ldap users or local users....It's rather weird, shares in which access restrictions are based upon ldap groups are working

Hi, this is merely FYI, but i would appreciate if someone had any comments or further information on the topic. We were using the following setup : cryptocard easyradius with RB-1 hardware tokens (hex or decimal display, synchronous (quicklog) mode) f-secure ssh with pam radius authentication This worked fine until we updated to openssh 2.9p2. Then all authentications where the response

Hi, thank you for your help, but it's not the reason. The user root is not managed in the smbpasswd file. Any more ideas? Thanks, Rudi tuxx:~ # smbpasswd New SMB password: Retype new SMB password: Failed to find entry for user root. Failed to modify password entry for user root tuxx:~ # ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Rudi Labermeier IT Administrator SP3D Chip

Hello , I have bought a cryptocard and i want to make it work openssh, now I need to initialize my token, install the cryptocard patch ( http://projects.jdimedia.nl/files/openssh-cryptocard.patch). The patch reads it's data from a file I've heard that some users made a conversion script from the CryptoADMIN server export to a crypto users file that the patch want. Is there anybody who can

Hi, I just finished integrating CryptoCard support in OpenSSH. - Native X9.9 support. Should work with CryptoCard en Secure Computing tokens. This basically gives support for Challenge / Response - Licensed under BSD license I'll put the patch on http://www.jdimedia.nl/igmar/pam, but that wil shorty change to projects.jdimedia.nl. If desired I could also put in on the mail. Let me

Is it posible to use the openssh-cryptocard.patch (This patch adds native Challenge/Reponse authentication to OpenSSH) in synchronous mode on *BSD ? are other patches ? I thought it wasn't posible to use pam on *BSD ? Gr l

Hi, Patch that makes CryptoCard word natively with OpenSSH is on http://www.jdimedia.nl/igmar/openssh Damien, please forward this to any list you thing is relevant. Regards, Igmar Palsenberg JDI Media Solutions -- Igmar Palsenberg JDI Media Solutions Jansplaats 11 6811 GB Arnhem The Netherlands mailto: i.palsenberg at jdimedia.nl

Hello all, I just noticed that 'KbdInteractiveAuthentication' is not mentioned in sshd.8 or anywhere else on the man page. Someone with better knowledge about it than me, please fix this :-) Also, there were talks about supporting cryptocards about 3 months ago. Is there work being done on this? -- Pekka Savola "Tell me of difficulties surmounted, Pekka.Savola at