On Tue, 2004-02-10 at 03:32, David Wilson wrote: > Hi guys/girls, > > How are you ? > I've been struggling to get my users' passwords to expire. > My configuration is samba-3.0 running with the standard smbpasswd > back-end. > > Everything that I can find on the web says I should set the following to > expire my users passwords after 28 days.: > pdbedit -v -P 'minimum password age' -C 300 > pdbedit -v -P 'maximum password age' -C 2419200 > > Unfortunately my users never get prompted for a new password. > > When I do a "pdbedit -v -u <username>" all the details come up, however > what I find interesting is the following: > Password can change: Wed, 04 Feb 2004 16:59:54 GMT > Password must change: Fri, 13 Dec 1901 22:45:51 GMT > > What ever I try I cannot change the "Password must change:" line. > Perhaps I've missed something really simple here ? > Does this feature perhaps require an LDAP back-end ?
Yes, it requires the LDAP backend, and only applies after the password has been changed (that is, the 'must change time' will not be reset for current passwords). We store the 'last change time' for smbpasswd, and could therefore implement a patch to handle this, but I would prefer to keep smbpasswd dumb and simple and to push people to the wonderful (horrible) world of LDAP ;-) Andrew Bartlett -- Andrew Bartlett [EMAIL PROTECTED] Manager, Authentication Subsystems, Samba Team [EMAIL PROTECTED] Student Network Administrator, Hawker College [EMAIL PROTECTED] http://samba.org http://build.samba.org http://hawkerc.net
signature.asc
Description: This is a digitally signed message part
-- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba