Web lists-archives.com

Re: [Samba] Classic upgrade and forced password change...




On Wed, 21 Jun 2017 16:00:35 +0200
Marco Gaiarin via samba <samba@xxxxxxxxxxxxxxx> wrote:

> Mandi! Marc Muehlfeld via samba
>   In chel di` si favelave...
> 
> [in the meantime, moved to 4.5...]
> 
> > > Ahem, i've typed '--comploxity'... sorry... OK, option is
> > > available in samba-tool in 4.2, but does not seems to work:
> > This just turns off the need of complex passwords, but there are
> > more settings, such as minimum length, number of previous passwords
> > not allowed to reuse, etc.
> > See:
> > # samba-tool domain passwordsettings --help
> 
> Ok. But still mean that, if i want to set a temporary password for
> users, i need to unset *all* password policy, set the password and
> then restore them?
> 
> But really no one here misses that feature? ;-)
> 
> 

Just like Windows you can create a user with a password and then make
them change the password when they login, see:

samba-tool user create --help

Specifically, the '--must-change-at-next-login' option.

> Could be possible, at least, to compute password hash ''offline'' and
> then put them via brute-force 'ldbmodify'? Someone have some hints?
> 

There is also the possibility of doing this with samba-tool, see:

 samba-tool user setpassword --help

Rowland


-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba