Web lists-archives.com

Re: [Samba] Password change




On Tue, 24 Apr 2018 23:45:22 +1000
Robin G via samba <samba@xxxxxxxxxxxxxxx> wrote:

> Hi Guys,
> 
> We are getting the following error when the users are trying to
> change the password from their windows machine: "Configuration
> information could not be read from the domain controller, either
> machine is unavailable or access is denied"
> 
> Our Samba PDC has LDAP backend. We have the following
> 
> Have the following in /etc/ldap/slapd.d/cn=config/olcDatabase{1}.hdb
> 
> olcAccess: {0}to attrs=userPassword by self write by anonymous auth
> by * none

The line should be:

olcAccess: {0}to
attrs=sambaNTPassword,sambaPwdLastSet,sambaPwdMustChange by
dn="cn=admin,dc=example,dc=com" write by self write by * none

> This is a fairly new setup and don't think it has worked before.

I suppose the real question is, if this is a fairly new setup, why was
a PDC chosen instead of an AD DC ?

Rowland



-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba