[Freeipa-users] Resynchronize Samba Passwort
Simo Sorce
simo at redhat.com
Mon Oct 15 13:50:41 UTC 2012
On Mon, 2012-10-15 at 14:15 +0200, Marc Grimme wrote:
> Am 14.10.2012 23:14, schrieb Simo Sorce:
> > On Fri, 2012-10-12 at 16:47 +0200, Marc Grimme wrote:
> > Right I am ok with sambaPwdMustChange not being set. That's all good.
> > What about sambaPwdLastSet ?
> Not set when a user is created new.
It should be set when you give the user a password as long at the
sambaSamAccount objectclass is added to the user.
> When I change the password:
> sambaPwdLastSet: 0
If this is when you set the password as an admin, it is expected.
> Not working with samba!
> Need to apply my script (see below).
Let me ask one thing, are you changing the password as a user ?
Or have you tested only setting the password as admin ?
If the latter this applies:
http://www.freeipa.org/page/NewPasswordsExpired
> BTW: when I create a user as follows:
> ipa user-add tuser2 --first=Test --last=User2 --shell=/bin/false
> --setattr=SambaSID=assign
> The SambaSID is: just assign.
I think it may require: SambaSID=S-1-5-21-xx-xx-xx-assign
Simo.
--
Simo Sorce * Red Hat, Inc * New York
More information about the Freeipa-users
mailing list