similar to: sambaLMPassword needed?

I have a Samba-PDC installation (version is 3.6.3) with openLDAP. When I change the password from a client (Windows/XP and Windows/7) the attribute "sambaNTPassword" is changed and I can log-in with the new pssword. The problem is that the content of the attribute "sambaLMPassword" is deleted. I remember that in my previous version of Samba (3.0.28) both attributes were

Hi, what are the minimum permissions for the attributes sambaLMPassword/sambaNTPassword for the the LDAP administrator account so that Samba is just enabled to use it for authentication with ldapsam backend. It seems like auth is not enough, is this true?! Thanks, Arokux

Hi, I'm trying to calculate the passwords so i can change them from a php-gui, an as i see it, userPassword can have any form if the cryptation algorithm is stated before the hash, like "{md5}blahblah32bit". In the docs, it states that sambaNTPassword is a md4 hash, wich should be calculatable (haven't done it yet though). And last for the sambaLMPassword: I can't find

Hi, i have samba 3.0.10 + ldap backend I create users with ldiff file. I just want to know if the field *sambaLMPassword <schema.php?server_id=0&view=attributes&viewvalue=sambaLMPassword> *is no more use Can someone confirm it ? thanks

Hello, Just today I started getting this error message when the user changes his password using smbpasswd. The password does change. But I see this error message in the log file and the machine 127.0.0.1 rejected the password change: Error was : RAP86: The specified password is invalid. Failed to change password for luser2 Jul 25 22:44:53 sambaserver1 smbd[18878]:

Hi We have some Samba servers using LDAP (389 DS) as backend. In the LDAP server, we have defined some policies to make the passwords stronger. When a user tries to change his password (Control-Alt-Del), this message appears in the LOGs: ==> /var/log/samba/xptest <== [2010/06/28 12:26:26, 2] auth/auth.c:check_ntlm_password(309) check_ntlm_password: authentication for user [10000001S]

Greetings. I have problem with password expiration problem i cannot handle myself, so i wrote in this list. Recently i discovered that a newly created samba account has already expired password. smbldap-useradd -a -d /home/tommy -G education -s /bin/bash -M tommy -c "Tommy T." tommy smbldap-passwd tommy getent shadow user:*:::::::0 user2:*:::::::0 user3:*:::365::::0

Greetings All. First let me introduce my situation Machine1: Pdc Samba + OpenLDAP(master) Machine2: Bdc Samba + OpenLDAP(slave) LDAP stores Samba and POSIX information for each user. Case1: I login to Machine1 and invoke smbpasswd. I change my passwords (samba and posix without any problem). In next few seconds they get propagated to Machin2 wher I can login with new credentials. ldap log

I have some weird error with one of my samba installation. When modifying samba password using smbpasswd, samba seems trying to add same attribute (instead of delete and add again), pls see the "MOD" from log file (from different domain) : UNSUCESSFULL Mar 15 17:10:53 hurricane slapd[27056]: conn=29489 op=1 MOD dn="uid=pwreka,ou=people,ou=purwakarta,dc=indorama,dc=com" Mar 15

-----Original Message----- From: samba-bounces+toby-list=mail.nixa.k12.mo.us@lists.samba.org [mailto:samba-bounces+toby-list=mail.nixa.k12.mo.us@lists.samba.org] On Behalf Of s.jousse@free.fr Sent: Thursday, December 18, 2003 11:38 AM To: Craig White Cc: samba@lists.samba.org Subject: Re: [Samba] Samba 3 PDC with LDAP - Error when changing userpasswordfrom windows here my passwd chat log (sorry,

I'm switching from OpenLDAP to the newly released Fedora Directory Server (formely known as the Netscape Directory Server) as a LDAP backend for my Samba domain. I'm now faced with a problem regarding how Fedora DS handles the userPassword field. Unlike OpenLDAP it encodes it in base64 so instead of reading userPassword: {SSHA}0lP+r3Z1NVan7Caf4CG9oSgnTbQRrv/p it reads: userPassword::

Hi, there! When my XP users try to change passwords, they get a message saying that password has been changed. That's not true! NT and LM passwords are changed but unixPassword isn't. Look at this openldap.log lines: Feb 12 07:50:28 apolo slapd[22826]: conn=698021 op=40 MOD dn="uid=teste,ou=Users,dc=domain" Feb 12 07:50:28 apolo slapd[22826]: conn=698021 op=40 MOD

AIX 5.2, OpenLDAP 2.2.20 We've just moved to LDAP (this weekend) and when I do a smbpasswd -e to enable a user it is prompting for a "New SMB password:" I've secured the attributes like so: access to dn.subtree="ou=People,dc=hvcc,dc=edu" attrs=userPassword by self write by dn="cn=root,dc=hvcc,dc=edu" write by * auth access to

Hello, I try to install a PDC with Samba 3.0.23 and openldap 2.3.27. I can join the domain with a win-xp-Machine, the User-Accounts are in ldap and looks like the following: dn: uid=ds,ou=people,dc=marco,dc=de userPassword: {crypt}RVp32Kd9mkUek sambaLogonTime: 0 sambaLogoffTime: 0 sambaPwdLastSet: 0 sambaProfilePath: \\homedirs\ds\.ntprofile sambaPwdCanChange: 0 sambaSID:

Hallo, I have to transfer samba passwords from an LDAP installation to a non- LDAP installation, passwddb is smbpasswd. LDAP shows "sambaLMPassword" and "sambaNTPassword"; smbpasswd needs 2 password entries. Can I copy the above LDAP passwords? If yes: what is what? Viele Gruesse! Helmut

Hey list, Right now I have Samba+LDAP working (like a charm acctually) I just have one issue. Right now Samba is authenticating the user against the sambaLMPassword and/or the sambaNTPassword attributes. I would rather it authenticated against the userPassword attribute like my unix boxes and mail servers do. Is samba capable of doing this? Otherwise I have to maintain two seperate passwords

I'm just migrating a whole samba-installations ffrom old 2.2 to 3.0 with LDAP. I was successfully able to migrate all useraccounts with smbldap-useradd but now I'm stuck with the machine-accounts. All machines are part of the domain and they should be able to logon the new server without noticing any difference. I can add them with smbldap-useradd -w but the resulting ldap-entry does

Samba experts, Thanks to advice from this list, I am finally able to get smbpasswd to change ldap passwords for the Samba LM/NT passwords. However, I had to give write access to sambaPwdLastSet and sambaPwdCanChange attributes as well. Other Samba attributes don't seem to need write access. I have found plenty of examples with people assigning an ACL for sambaLMPassword and

Hallo, I'm asking myself, which LDAP attributes are mandatory which optional for user and workstation accounts. After using the smbldap-populate command there where different attributes set than for adding users with the smbldap-useradd command. --- snip --- sambaAcctFlags: sambaHomeDrive: sambaHomePath: sambaKickoffTime: sambaLMPassword: sambaLogoffTime: sambaLogonScript: sambaLogonTime:

1. yes, I tried these lines and in the logs, there was a failure in response 3 "match no". When I manually ran smbldaa-passwd.pl in xterm, I saw that there's never a "successfully" meesage when the password is changed with success, I looked the code (luckily it's Perl ;o)), and I didn't see any "print "succes"" or "print "password