Re: [Samba] Remove old password in Windows

Mon, 03 Nov 2008 19:02:39 -0800 

On Tue, 2008-11-04 at 08:07 +0800, Nelson Serafica wrote:
> I have Samba running as File Server. Most workstation uses Windows XP and I
> usually map the samba drive to Windows.
> 
> When I change password, users doesn't prompt to re-enter their password. It
> seems the password was cache on Windows and even though I already change the
> password, since they have previous connection, they have already granted
> access to that directory despite of the new password.
> 
> Is there a way that Windows Users will be force to re-enter their new
> password?
> 
> Also, after changing the password of the user in samba, I restart samba
> service (service smb restart). However, Windows XP users was prompt of
> "Logon failure: unknown user name or bad password". It seems it still using
> the old password but since I have change their password, Windows still using
> the old password.
> 
> I have visited control panel--->user account-->manage my network password
> but didn't see any password save.
> 
> 
> Please advise if their are other people experience the same thing.
> 
> -- 
> Nelson Serafica
> 
> http://nelsontux.blogspot.com

Nelson,

Windows caches your logon credentials after the initial login as a hash
value.  This is a 'feature' of the MS client systems.  You can disable
password caching on the Windows machines for any externally accessed
resources.  I don't believe this affects the current local user session.

To disable password caching for new logins, open regedit and add the
following keys as DWord values: 
        HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion
        \Policies\Network\DisablePwdCaching = 1
        
        HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion
        \Policies\Network\DisablePwdCaching = 1
        
These entries does not exist by default - if you have many clients, you
may want to script this into their logon scripts.

Another topic to review that was posted recently:
http://www.mail-archive.com/[email protected]/msg96607.html

The issues that making these changes would create is that every user
would be prompted for their username and password on every connection.
This is, perhaps, undesirable.

Regards,
Frank

-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/listinfo/samba

Reply via email to