[389-users] Samba authentication via DS/LDAP
Rich Megginson
rmeggins at redhat.com
Sat Feb 23 04:29:39 UTC 2013
On 02/22/2013 06:46 PM, Dan Lavu wrote:
> Todor,
>
> Are the values the same? i.e. the password hash? If it is, I'd use a COS pointer, essentially pointing sambaNTPassword to Password.
It's not the same. 389 doesn't support the RC2 and "DES" required by samba.
>
> http://directory.fedoraproject.org/wiki/Howto:ClassOfService
>
> Dan
>
> -----Original Message-----
> From: 389-users-bounces at lists.fedoraproject.org [mailto:389-users-bounces at lists.fedoraproject.org] On Behalf Of Todor Petkov
> Sent: Wednesday, February 20, 2013 11:26 AM
> To: 389 Users
> Subject: [389-users] Samba authentication via DS/LDAP
>
> Hello,
>
>
> I am trying to make Samba authenticate to DS. I used this guide http://port389.org/wiki/Howto:Samba, the Samba server is set up also to authenticate users via SSH/console following this guide http://www.couyon.net/1/post/2012/4/enabling-ldap-usergroup-support-and-authentication-in-centos-6.html
>
> Things are working this way:
>
> when I add a user to Samba (smbpasswd -a user), the LDAP scheme for the user is modified and there are several new attributes added. One of them is sambaNTPassword, which seems to be used for authentication. When I set it via phpldapadmin to '123', the user authenticates with this password, and not with the one used for SSH for example.
> Is there a way to 'force' samba to use the 'password' value instead of 'sambaNTPassword'? I don't want to tell the user that he must remember different password for accessing Samba.
>
> Thanks in advance,
>
>
> --
> 389 users mailing list
> 389-users at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/389-users
>
> --
> 389 users mailing list
> 389-users at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/389-users
More information about the 389-users
mailing list