Hello again :-) So my understanding is that somehow the pam library throws this flag to pam_winbind for some reason thus even if the account is not expired. I do not have direct access to the DC that we are doing authentication from so testing a workaround is difficult.
Am I correct in assuming that the only way to fix this problem is to set the account expiration far in the future? Is there anyway pam_winbind can be configured to ignore this flag. ie: i tried /etc/pam.d/system-auth password [default=ok new_authtok_reqd=ignore] /lib/security/$ISA/pam_winbind.so try_first_pass use_authtok but no different behaviour observed. considering I cant access this bug report, is there anyway I can find more information? On 8/16/06, Peter Trifonov <[EMAIL PROTECTED]> wrote:
Dear Matt, > I have a pretty large DC and am using winbind for our linux > workstations and im having a preculiar issue. Not all > accounts but some...including mine are recieving the pam > error to change password. > This seems to be another instance of https://bugzilla.samba.org/show_bug.cgi?id=3969 With best regards, P. Trifonov
-- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
