Hello all.
I'm trying to configure pam_smbpass for Samba 3.6.16 on Solaris 10.
However, I'm getting a strange result: instead of sync'ing the password,
it *removes* it. That is not quite what I expect...
I have this line in /etc/pam.conf:
other password required pam_smbpass_csw.so debug use_authtok
try_first_pass nonull
To start the test, I make sure passwords are already in sync:
passwd user
smbpasswd user
Then I check it works:
su - user
smbclient \\\\server\\share
Both succeed, so so far, all good.
Now I try to change it using passwd, first as user:
$ passwd
Enter existing login password:
New Password:
Permission denied
The logs show:
Jul 4 14:50:17 server passwd[12830]: [ID 871885 auth.notice]
(pam_smbpass) failed auth request by user for service passwd as user
Jul 4 14:50:17 server passwd[12830]: [ID 507756 auth.notice]
(pam_smbpass) failed auth request by user for service passwd as
user(-18956203)
Jul 4 14:50:17 server passwd[12830]: [ID 965784 auth.notice]
(pam_smbpass) 1 authentication failure from user for service passwd as
user(1000)
If I try as root:
# passwd user
New Password:
Re-enter new Password:
passwd: password successfully changed for user
su works with the new password:
su - user
Samba fails:
$ smbclient \\\\server\\share
Enter user's password:
session setup failed: NT_STATUS_LOGON_FAILURE
However, the same works with an empty password (press enter at the
password request). Not good.
The logs show:
Jul 4 14:54:10 server passwd[12912]: [ID 632017 auth.notice]
(pam_smbpass) password for (user/1000) changed by (root/0)
Any idea what I did wrong?
Laurent
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
