Mostly people asking for help don't reply rudely to the people trying to help them.
bd
On 18/01/2005, at 10:04 AM, John Clarke wrote:
On Tue, Jan 18, 2005 at 08:27:59 +1100, Ben de Luca wrote:
To: John Clarke <[EMAIL PROTECTED]> Cc: [email protected]
Please don't do this. I'm subscribed to the list and I don't want or need two copies.
There is no question I am just stating facts. You can not authenticate with a windows AD using a samba version < 3.0.
Ah, thank you. I think this was what you were trying to say earlier but
I didn't understand.
way. If you want to add a local SAMBA password and user name to the
machine, you have to use the smbpassword command. SAMBA user accounts
and system user accounts are not the same thing.
I know that, and this all worked perfectly before the DC upgrade. The
account exists, with the same password, both locally and on the domain
controller.
It clearly doesnt exist in the smbpassword file or you would be able to
log in locally.
It clearly *does* exist (and I've always been able to login locally):
[EMAIL PROTECTED] ~]$ grep johnc /etc/samba/smbpasswd
johnc:500:XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:[U ]:LCT-00000000:John Clarke
I bet if you comment out the pam_smb stuff you will still be able to log in.
Yes, as johnc. However, I've tried a different username which has a local account (in both /etc/passwd and /etc/samba/smbpasswd) but does not have a password in /etc/shadow, and it can login if pam_smb is enabled, but not if pam_smb is disabled. It looks to me like pam_smb can authenticate with AD.
Thanks,
John -- Let us have a moment of silence for the dearly beloved departed; the transition from Gopher to WWW was *not* progress. -- Shmuel (Seymour J.) Metz -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
-- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
