Web lists-archives.com

Re: [Samba] Synchronizing passwords to Samba 4




On Thu, 2018-09-27 at 12:30 +0200, Sebastien BEAUDLOT via samba wrote:
> Hi, 
> 
> I'm trying to synchronize user accounts from LDAP to Samba 4 AD
> (using LSC) but it seems that password update through ldap is not
> allowed. 
> 
> I failed to find details about it, but can someone confirm that
> unicodePwd cannot be read / wrote trough a LDAPS connection ? 
> Is there any workaround ? 

What type of password do you have?  A hash of some kind, the plaintext?

An administrative password reset is possible over LDAP using unicodePwd
and userPassword (if configured), if you have the plaintext.

Injecting hashes is harder, requires local DB access and needs more
care.

Andrew Bartlett
 
-- 
Andrew Bartlett                       http://samba.org/~abartlet/
Authentication Developer, Samba Team  http://samba.org
Samba Developer, Catalyst IT          http://catalyst.net.nz/services/samba




-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba