I think is great that you could achieve that using only LSC personaly I used ldbmodify and used the info in:
https://lists.samba.org/archive/samba/2014-June/182226.html Rodrigo Zandavalli Avila Em qua, 26 de set de 2018 às 12:12, Sebastien BEAUDLOT < [email protected]> escreveu: > Hi, > > I am trying to push passwords for my LDAP users to a Samba 4 AD (like > instructions in this howto : > https://lsc-project.org/documentation/tutorial/openldaptoactivedirectory), > but i'm stuck with a LDAP Error 53 : > > Error while modifying entry > CN=beaudlot,cn=Users,dc=adbaka,dc=univ-avignon,dc=fr in directory > :javax.naming.OperationNotSupportedException: [LDAP: error code 53 - > 00002035: setup_io: it's not allowed to set the NT hash password directly']; > > Dataset look like : > > <dataset> > <name>unicodePwd</name> > <policy>FORCE</policy> > <createValues> > <string>AD.getUnicodePwd("JustTesting4Password!")</string> > </createValues> > </dataset> > > (I am just trying to push a fixed string for now, but future plans will > include pre-encrypted passwords with passwordhk.pl) > > Samba 4 AD connection is secured. I tried TLS and SSL/ldaps, both working > for all other attributes. I also tried to bind with both the builtin > administrator account and a manually made lsc service account. > > Password update seems way more tricky than other attributes, and i may be > missing something important here ... > > > Regards. > > -- > Sébastien BEAUDLOT > > Administrateur système, réseaux et téléphonie > > Direction Opérationnelle des Systèmes d'Information ( DOSI ) > Pôle Infrastructures > Université d'Avignon et des Pays de Vaucluse > > Tèl : 04.90.16.26.04 > -- > _______________________________________________________________ > Ldap Synchronization Connector (LSC) - http://lsc-project.org > > lsc-users mailing list > [email protected] > https://lists.lsc-project.org/cgi-bin/mailman/listinfo/lsc-users
_______________________________________________________________ Ldap Synchronization Connector (LSC) - http://lsc-project.org lsc-users mailing list [email protected] https://lists.lsc-project.org/cgi-bin/mailman/listinfo/lsc-users
