Solved

Samba as PDC with domain segurity directives ?

Posted on 2004-09-14
6
259 Views
Last Modified: 2013-12-15
Hello,

i have following question: We are using samba for file/printer sharing for a long time. Now we want to use the PDC facility to centralize passwords and logins. All works fine.

But, it is possible to maintain and use domain segurity directives from samba (linux) ? The most important feature will be the password expiration when users will be forced to change their password.

Thank you for your comments.
0
Comment
Question by:adminpeter
  • 4
  • 2
6 Comments
 
LVL 10

Accepted Solution

by:
Luxana earned 125 total points
ID: 12052014
Hi,

I solved this problem with program changepassword you can download it from http://sourceforge.net/project/showfiles.php?group_id=55009&release_id=169392

All you need to do is install apache for internal network. Compile and install changepassword program to your apache /cgi-bin directory.

Then all users can access this change password program from their local pc's :

http://yourlinuxbox/cgi-bin/changepassword.cgi

Program accept old UNIX password not samba password so you can leave new smbclients passwords blank and clients can change them any time they wont.

I'm using this program for more then 60 win98 clients without problems.

LUXANA

0
 

Author Comment

by:adminpeter
ID: 12052091
Hi LUXANA,

thank you for your comment. Yes i was thinking about a similiar solution. With changepasswd the user will be able to change their password, but they get not notified about the expiration.

When samba allows to specify a script/program to execute at login, maybe someone knows about a "program" that can do this: check password expiration in /etc/shadow and if expired or soon to expire give a message and a dialog to change then post new password back to server.

Maybe someone knows if the samba-team is working for such a thing for next realeases ?

Peter.
0
 
LVL 10

Expert Comment

by:Luxana
ID: 12052276
peter

 I know exactly what you mean I had same problem :) But I never solved it in that way so I used changepassword program. But maybe my link can help you:-)

http://www.experts-exchange.com/Operating_Systems/Linux/Linux_Setup/Q_20602402.html

Luxana
0
Master Your Team's Linux and Cloud Stack

Come see why top tech companies like Mailchimp and Media Temple use Linux Academy to build their employee training programs.

 

Author Comment

by:adminpeter
ID: 12073104
Ok that is my solution:

1. Switch to samba-3.

2. Using samba's preexec option in network shares. The script checks if the password is expired (or soon to be expired) by reading and processing /etc/shadow and notify the user with a Windows popup message (smbclient -M).

At the moment this is enough that the user get notified (and not forced) to change their password.
0
 
LVL 10

Expert Comment

by:Luxana
ID: 12073168
I'll try that last time when I was doing that I had much older version of samba

thanks

0
 
LVL 10

Expert Comment

by:Luxana
ID: 12083259
Hello adminpeter

have a look here this will be easy for you,

http://www.experts-exchange.com/Operating_Systems/Linux/Q_21134601.html

Luxana
0

Featured Post

Gigs: Get Your Project Delivered by an Expert

Select from freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely and get projects done right.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

It’s 2016. Password authentication should be dead — or at least close to dying. But, unfortunately, it has not traversed Quagga stage yet. Using password authentication is like laundering hotel guest linens with a washboard — it’s Passé.
Fine Tune your automatic Updates for Ubuntu / Debian
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now