LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - General
User Name
Password
Linux - General This Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.

Notices



Reply
 
Search this Thread
Old 05-06-2010, 03:26 PM   #1
leblinux
Member
 
Registered: Dec 2008
Posts: 46

Rep: Reputation: 0
Problem changing password for local users


Dears,

I am on ubuntu server and its joined to an W3k Domain thru winbind/samba. However everything works fine and Windows and Local users can login to the machine without any problem. However when I wanted to create a local user X and change his password I couldn't. It created the local user X but I could not change the password. Here are the outputs:

Pam configs:

Common-account:
account sufficient pam_winbind.so
account required pam_unix.so
----------------------------------------------
Common-auth:
auth sufficient pam_winbind.so krb5_auth krb5_ccache_type=FILE
auth sufficient pam_unix.so nullock_secure use_first_pass
auth required pam_deny.so
--------------------------------------------------
Common-password:
password [success=1 default=ignore] pam_unix.so obscure use_authtok try_first_pass sha512
----------------------------------------------------
Common-session:
session required pam_unix.so
session required pam_mkhomedir.so skel=/etc/skel/ umask=0066
session sufficient pam_winbind.so
-----------------------------------------------------

The output from /var/log/auth.log when I try to change the password for local username saad.
local means the username on the machine itself.

Passwd[1779]: PAM bad jump in stack
May 6 17:29:59 ubuntu-linux sudo: pam_unix(sudo:auth): unrecognized option [nullock_secure]
May 6 17:29:59 ubuntu-linux sudo: pam_unix(sudo:auth): auth could not identify password for [saad]
---------------------------------------------------------
Output of the NSSWITH.conf

passwd: compat winbind
group: compat winbind
shadow: compat winbind

hosts: files dns
networks: files dns

protocols: db files
services: db files
ethers: db files
rpc: db files

netgroup: nis
-------------------------------------------------
Output of Smb.conf

[GLOBAL]
workgroup = Domain
netbios name = Hostname
realm = Full Domain name
password server = Domain server name
enable privileges = Yes
allow trusted domains = Yes
time server = Yes
obey pam restrictions = yes
winbind refresh tickets = yes
client ntlmv2 auth = yes
winbind use default domain = yes
security = ADS
encrypt passwords = yes
passdb backend = tdbsam
unix password sync = yes
passwd program = /usr/bin/passwd %u
passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* .
pam password change = no

map to guest = bad user

idmap uid = 10000-20000
idmap gid = 10000-20000
template shell = /bin/bash
winbind enum groups = yes
winbind enum users = yes
usershare allow guests = yes
================================================== =======

main problem is:

passwd saad
Changing password for saad.
(current) UNIX password:
passwd: Permission denied
passwd: password unchanged
saad@ubuntu-server:~$
----------OR--------------
root@ubuntu-server:~# passwd saad
passwd: Permission denied
passwd: password unchanged
root@ubuntu-server:~#
---------------------------------
cat /etc/passwd
saad:1002:1002:,,,:/home/saad:/bin/bash

--------------------------------

I can login fine without any problem.
====================================

Regards,
Saad

====================

Solved the problem by commenting

Common-password:
password [success=1 default=ignore] pam_unix.so obscure use_authtok try_first_pass sha512

and Uncommenting:
password required pam_unix.so nullok obscure min=4 max=50 md5
====================================

Last edited by leblinux; 05-07-2010 at 03:52 AM.
 
Old 05-06-2010, 03:35 PM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,415

Rep: Reputation: 1968Reputation: 1968Reputation: 1968Reputation: 1968Reputation: 1968Reputation: 1968Reputation: 1968Reputation: 1968Reputation: 1968Reputation: 1968Reputation: 1968
not a networking question, moved to Linux - General
 
1 members found this post helpful.
  


Reply

Tags
directory, network, pam, samba, winbind


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Changing password for various users with same UID kapil.kshirsagar Linux - Software 3 07-04-2008 05:36 AM
users password problem soumalya Linux - Security 11 08-27-2007 08:20 AM
problem in changing password of squirrel mail (please help) sahil_jammu Linux - General 1 01-17-2007 06:20 AM
How to disable password changing permissions to normal users ? toraghun Linux - Newbie 14 11-17-2005 11:17 AM
problem logging in local users - nis,nfs synfield Linux - Networking 3 04-05-2003 10:04 AM


All times are GMT -5. The time now is 09:44 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration