[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: samba / UNIX password sync

What i am missing in your question  is what you are trying to accomplish,
It sounds to me that you are trying to sync windows/unix passwords.

but when you start to use pam, you will actually leave all the password
stuff (authentication)
to an alternate source, in your case a windows domain controller.  This
means that all unix passwords in /etc/passwd are now irrelevant.

the passwd section of the pam configuration enables a user to change his
windows password on a unix system.
Still no synchronising involved.

 Matthijs Sneijders                                  

     3G16 room                                           
     P.O. Box                                            
     1970 CA                                             
     phone       +31 (0)251-496400                       
     fax         +31 (0)251-470064                       
     mail        matthijs sneijders corusgroup com       

|         |           "Vladimir Kosovac" |
|         |           <vkosovac gmail com|
|         |           >                  |
|         |           Sent by:           |
|         |           redhat-list-bounces|
|         |           @redhat.com        |
|         |                              |
|         |                              |
|         |           30-08-2006 01:14   |
|         |           Please respond to  |
|         |           General Red Hat    |
|         |           Linux discussion   |
|         |           list               |
|         |                              |
  |                                                                                                                   |
  |       To:       redhat-list redhat com                                                                            |
  |       cc:                                                                                                         |
  |       Subject:  samba / UNIX password sync                                                                        |

Hi all.

I am running very old version of samba (2.2.7) and cannot upgrade just yet,
must make this work as it is (if possible).

After playing a bit with pam modules, I got first part of what I want to do
going - windows user is able to change domain password from windows.
However, this change never gets synced to Linux password, although (I
configuration is OK. Can someone give me some pointers to what else I need
to look at? Current relevant config is:

Server: Red Hat 7.1 / samba-2.2.7-2.7.2 (compiled from RH source with some
extra options, --with pam-smb_passwd included)
Client: Windows 2000 / some XP

# The PAM configuration file for the `samba' service
auth       required     /lib/security/pam_smbpass.so nodelay
account    required     /lib/security/pam_pwdb.so audit nodelay
session    required     /lib/security/pam_pwdb.so nodelay
password   required     /lib/security/pam_smbpass.so nodelay

security = user
encrypt passwords = yes
smb passwd file = /etc/samba/smbpasswd
unix password sync = Yes
passwd program = /usr/bin/passwd %u
passwd chat = *New*password* %n\n *Retype*new*password* %n\n
pam password change = yes
obey pam restrictions = yes

What am I missing? Help appreciated,

redhat-list mailing list
unsubscribe mailto:redhat-list-request redhat com?subject=unsubscribe

This transmission is confidential and must not be used or disclosed by
anyone other than the intended recipient. Neither Corus Group Plc nor
any of its subsidiaries can accept any responsibility for any use or
misuse of the transmission by anyone.

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]