On Mon, 2005-11-07 at 21:14 +0100, [EMAIL PROTECTED] wrote: > Hi, > We are using a PDC (Primary LDAP) and BDC (Replica LDAP). Changing > password on PDC works fine, but no way when users are logged on BDC. The > truth is that PDC and BDC are configured with passdb backend = > ldapsam:ldap://127.0.0.1/. The users get the message like "You are not > allowed to change password" or "You can not change password at this > time" when they want to change their password. > Is it only possible to change password when the BDC is showing to Primary > LDAP? As I know LDAP supports that you can change something on Replica > which is then synchronized with the primary LDAP.
This is supported on some commerical ldap servers, and Fedora (I think). I've only used OpenLDAP so far, which is strictly master/slave(s). > I'm using only idealx > scripts and they are not included in the BDC smb.conf, because BDC should > do only logging for now. > Some lines from my smb.conf The way this works is that the slave ldap server should send a referral saying 'do your modify over here'. If the LDAP server sends this (configured in the slapd.conf for openldap), then Samba makes the modification on the master. It is not configured in Samba itself. Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net
signature.asc
Description: This is a digitally signed message part
-- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
