-   Linux - Newbie (
-   -   How to Change Password of Domain User on Ubuntu Box (

darknight1726 06-10-2008 02:22 AM

How to Change Password of Domain User on Ubuntu Box
Hi to All,

I have created a Linux Box (Ubuntu) where domain users of Active Directory can log in. I have successfully login the domain accounts and I'm trying to change password of a domain user.

DOMAIN\admin@sampledesktop:~$ passwd
passwd: User not known to the underlying authentication module
passwd: password unchanged

Please see below some PAM config.

password requisite nullok obscure md5
password required nullok use_authtok try_first_pass

auth required /lib/security/
auth sufficient /lib/security/ likeauth nullok
auth sufficient /lib/security/ use_first_pass
auth required /lib/security/

account required /lib/security/ broken_shadow
account sufficient /lib/security/
account sufficient /lib/security/ uid < 100 quiet
account [default=bad success=ok user_unknown=ignore] /lib/security/
account required /lib/security/

password requisite /lib/security/ retry=3
password sufficient /lib/security/ nullok use_authtok md5 shadow
password sufficient /lib/security/ use_authtok
password required /lib/security/
session required /lib/security/
session required /lib/security/

auth optional /lib/security/ migrate

I'm hoping someone can help me to find a solution to thing.

That's all.

Duck2006 06-10-2008 08:14 AM

sudo passwd (user name)

darknight1726 06-11-2008 04:38 AM

A, ok thanks. However, I've encountered some problems on using sudo for domain users. Although I've inserted the domain group on visudo, system return a message, not in the sudoer file. Before this, I also have error on listing domain user / group (wbinfo -u /-g), saying error listing on domain users /groups.

Is it a prerequisite to have a successful listing of domain user /group although it's successful to connect on domain users on my ubuntu desktop? or it just a wrong contents on /etc/pam.d/sudo?

/etc/pam.d/sudo entries:
auth sufficient
auth sufficient nullok_secure use_first_pass
auth required
@include common-account

I hope you could help me with this. Thanks.

All times are GMT -5. The time now is 03:04 PM.