[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Change password in Samba and ldap



Oded Naveh skrev:
> Philipp Huebner wrote:
>> Hi,
>>
>> Oded Naveh schrieb:
>>> On Skolelinux system?
>>> (http://wiki.debian.org/DebianEdu/Documentation/Etch/GettingStarted)
>>> Have you tried lwat? (https://www/lwat)
>>> Or have I missed the point?
>> The point is, if users change their password on workstations /
>> thinclients using passwd, it only chages the unix password, not the
>> samba password.
> 	If that so then your system is broken.
> On a Debian-Edu node passwd should change the password stored in LDAP, all
> users (but root) from all machines (including Windows) logins are
> authenticated against the LDAP entries.
> Both Samba and login (for Linux/kdm/ldm) are looking up the data stored in
> LDAP.

Yes. Samba and login/kdm/ldm/gdm/ssh are using LDAP. but not the same
password entry.


login/kdm/ldm/gdm/ssh are using userPassword
Samba are using samNTPassword or samLMPassword (dont remember when it
uses which, but I think its a Domain or WinNT/XP vs Win9x thing, or
maybe older)

Main rule is as Klaus said: Keep your users away from *passwd, and use
lwat. There is a reason for adding chguserpw.php into that package.

Of topic, but slightly on topic maybe:
 ldm is actually using ssh, and so are NX (or maybe not the later)


OK back to work


// faj


Reply to: