Solved

Samba as PDC with domain segurity directives ?

Posted on 2004-09-14
6
268 Views
Last Modified: 2013-12-15
Hello,

i have following question: We are using samba for file/printer sharing for a long time. Now we want to use the PDC facility to centralize passwords and logins. All works fine.

But, it is possible to maintain and use domain segurity directives from samba (linux) ? The most important feature will be the password expiration when users will be forced to change their password.

Thank you for your comments.
0
Comment
Question by:adminpeter
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
6 Comments
 
LVL 10

Accepted Solution

by:
Luxana earned 125 total points
ID: 12052014
Hi,

I solved this problem with program changepassword you can download it from http://sourceforge.net/project/showfiles.php?group_id=55009&release_id=169392

All you need to do is install apache for internal network. Compile and install changepassword program to your apache /cgi-bin directory.

Then all users can access this change password program from their local pc's :

http://yourlinuxbox/cgi-bin/changepassword.cgi

Program accept old UNIX password not samba password so you can leave new smbclients passwords blank and clients can change them any time they wont.

I'm using this program for more then 60 win98 clients without problems.

LUXANA

0
 

Author Comment

by:adminpeter
ID: 12052091
Hi LUXANA,

thank you for your comment. Yes i was thinking about a similiar solution. With changepasswd the user will be able to change their password, but they get not notified about the expiration.

When samba allows to specify a script/program to execute at login, maybe someone knows about a "program" that can do this: check password expiration in /etc/shadow and if expired or soon to expire give a message and a dialog to change then post new password back to server.

Maybe someone knows if the samba-team is working for such a thing for next realeases ?

Peter.
0
 
LVL 10

Expert Comment

by:Luxana
ID: 12052276
peter

 I know exactly what you mean I had same problem :) But I never solved it in that way so I used changepassword program. But maybe my link can help you:-)

http://www.experts-exchange.com/Operating_Systems/Linux/Linux_Setup/Q_20602402.html

Luxana
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:adminpeter
ID: 12073104
Ok that is my solution:

1. Switch to samba-3.

2. Using samba's preexec option in network shares. The script checks if the password is expired (or soon to be expired) by reading and processing /etc/shadow and notify the user with a Windows popup message (smbclient -M).

At the moment this is enough that the user get notified (and not forced) to change their password.
0
 
LVL 10

Expert Comment

by:Luxana
ID: 12073168
I'll try that last time when I was doing that I had much older version of samba

thanks

0
 
LVL 10

Expert Comment

by:Luxana
ID: 12083259
Hello adminpeter

have a look here this will be easy for you,

http://www.experts-exchange.com/Operating_Systems/Linux/Q_21134601.html

Luxana
0

Featured Post

Visualize your virtual and backup environments

Create well-organized and polished visualizations of your virtual and backup environments when planning VMware vSphere, Microsoft Hyper-V or Veeam deployments. It helps you to gain better visibility and valuable business insights.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Introduction We as admins face situation where we need to redirect websites to another. This may be required as a part of an upgrade keeping the old URL but website should be served from new URL. This document would brief you on different ways ca…
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
Suggested Courses

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question