On 20.02.2013 г. 18:25 ч., Todor Petkov wrote:
Hello,
I am trying to make Samba authenticate to DS. I used this guide
http://port389.org/wiki/Howto:Samba, the Samba server is set up also to
authenticate users via SSH/console following this guide
http://www.couyon.net/1/post/2012/4/enabling-ldap-usergroup-support-and-authentication-in-centos-6.html
Things are working this way:
when I add a user to Samba (smbpasswd -a user), the LDAP scheme for the
user is modified and there are several new attributes added. One of them
is sambaNTPassword, which seems to be used for authentication. When I
set it via phpldapadmin to '123', the user authenticates with this
password, and not with the one used for SSH for example.
Is there a way to 'force' samba to use the 'password' value instead of
'sambaNTPassword'? I don't want to tell the user that he must remember
different password for accessing Samba.
No, since they are stored using different encryption methods.
However, you can:
* authenticate SSH users against sambaNTPassword with winbind
* set "ldap passwd sync = yes" in smb.conf so that samba will update
userPassword whenever sambaNTPassword is changed (user does
ctrl+alt+del, change password).
Best regards.
Deyan
--
Deyan Stoykov, dstoykov@xxxxxxxxxxx
Computing and Information Services Center
University of Ruse
--
389 users mailing list
389-users@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/389-users
