<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.2900.3132" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT face=Arial size=2>Hi everybody!</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV>
<DIV>After several tips in relation to the correct way
of configuring samba with Fedora-DS, everything was going well. But a
few days a go, i was trying to configure</TD> the CUPS, and as it
did not initiate then i tried to remove it, reinstall it, and to
update it with the commands “yum remove cups*”, “yum install cups” and
“yum update cups*”. Since then, i observed that the "<STRONG>password
change</STRONG>"(syncronism) stopped to function with an old error message
(<STRONG>you don't have permission to change the password</STRONG>).</DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV>Here, the passwords synchronization between samba and
Fedora-DS only worked with "<STRONG>pam password</STRONG>":</DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><TD id=gap></TD><TD class=almost_half_cell>
<DIV id=result_box dir=ltr><STRONG>It will be that someone can help
me?</STRONG></DIV>
<DIV dir=ltr><STRONG></STRONG> </DIV>
<DIV dir=ltr><STRONG></STRONG> </DIV></TD></DIV>
<DIV><STRONG>This is the configuration that functioned normally until i
reinstalled the CUPS. (because, it is the only different thing that "i remember"
i can have done).</STRONG></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2><STRONG>/etc/samba/smb.conf</STRONG></FONT></DIV>
<DIV><FONT face=Arial size=2> ## Sincronizacao de senhas
samba com Linux via windows<BR> # ldap passwd sync =
yes # here fails, i think it was because FDS doesn't have plugin for
"<STRONG>pam_password exop</STRONG>" option.<BR> pam
password change = yes<BR> unix password sync =
Yes<BR> passwd chat = *New*password* %n
*Retype*new*password* %n
*passwd:*all*authentication*tokens*updated*successfully*<BR> passwd
program = /usr/sbin/smbldap-passwd -u %u<BR> obey pam
restrictions = no<BR></FONT></DIV>
<DIV><FONT face=Arial size=2><STRONG></STRONG></FONT> </DIV>
<DIV><FONT face=Arial size=2><STRONG>/etc/ldap.conf</STRONG></FONT></DIV>
<DIV><FONT face=Arial size=2> base
dc=sei,dc=intranet</FONT></DIV>
<DIV><FONT face=Arial size=2> host 192.168.2.3</FONT></DIV>
<DIV><FONT face=Arial size=2> rootbinddn cn=Directory
Manager # It was my <STRONG>only problem</STRONG> in the past, i
forgot this line!</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT><FONT face=Arial size=2>
timelimit 120</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT><FONT face=Arial size=2>
pam_lookup_policy yes</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT><FONT face=Arial size=2>
ssl no<BR> pam_password crypt</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2><STRONG>/etc/nsswitch.conf</STRONG></FONT></DIV>
<DIV><FONT face=Arial size=2> passwd: files
ldap<BR> shadow: files
ldap<BR> group: files
ldap</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>
hosts: files dns</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2> bootparams: nisplus
[NOTFOUND=return] files</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2> ethers:
files<BR> netmasks: files<BR>
networks: files<BR> protocols: files
ldap<BR> rpc:
files<BR> services: files ldap</FONT></DIV>
<DIV><FONT face=Arial size=2> </FONT></DIV>
<DIV><FONT face=Arial size=2> netgroup: files
ldap</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2> publickey:
nisplus</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2> automount: files
ldap<BR> aliases: files
nisplus<BR><BR></FONT><FONT face=Arial
size=2><STRONG>/etc/openladap/ldap.conf</STRONG></FONT></DIV>
<DIV><FONT face=Arial size=2> URI <A
href="">ldap://127.0.0.1/</A><BR> BASE
dc=sei,dc=intranet<BR></FONT></DIV>
<DIV><FONT face=Arial size=2><STRONG></STRONG></FONT> </DIV>
<DIV><FONT face=Arial
size=2><STRONG>/etc/pam.d/system-auth</STRONG></FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2> #%PAM-1.0<BR>
# This file is auto-generated.<BR> # User changes will be
destroyed the next time authconfig is run.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>
auth
required pam_env.so<BR>
auth sufficient
pam_unix.so likeauth nullok<BR>
auth sufficient
pam_ldap.so use_first_pass<BR>
auth
required pam_deny.so</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2> account
required pam_unix.so
broken_shadow<BR> account
sufficient pam_succeed_if.so uid < 100
quiet<BR> account [default=bad
success=ok user_unknown=ignore] pam_ldap.so<BR>
account required
pam_permit.so</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2> password
requisite pam_cracklib.so retry=3<BR>
password sufficient pam_unix.so md5 shadow
nullok use_authtok<BR> password
sufficient pam_ldap.so use_authtok<BR>
password required
pam_deny.so<BR></FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2> session
required pam_limits.so<BR>
session required
pam_unix.so<BR> session
optional pam_ldap.so<BR></FONT><BR>Grateful for
your attention,</DIV>
<DIV><PRE>Agnaldo</PRE></DIV></DIV></BODY></HTML>