Hey all,
I am playing around with pdbedit and a Samaba domain controller. I am trying to enforce "maximum password age" to 30 days which. It says that it is enforced but I am not sure.
This is what I get which is 30 days:
Code:
pdbedit -P "maximum password age"
account policy "maximum password age" description: Maximum password age, in seconds (default: -1 => never expire passwords)
account policy "maximum password age" value is: 2592000
This looks as fine and good but then when I get info on a user I get this:
Code:
pdbedit -Lv user
Unix username: user
NT username:
Account Flags: [U ]
User SID: S-1-5-21-3079815154-879433680-2576789838-3072
Primary Group SID: S-1-5-21-3079815154-879433680-2576789838-1201
Full Name: ,,,
Home Directory: \\pdc\user
HomeDir Drive: H:
Logon Script: logon.bat
Profile Path: \\pdc\user\profile
Domain: testdomain
Account desc:
Workstations:
Munged dial:
Logon time: 0
Logoff time: Mon, 18 Jan 2038 22:14:07 EST
Kickoff time: Mon, 18 Jan 2038 22:14:07 EST
Password last set: Wed, 21 Feb 2007 11:09:02 EST
Password can change: Wed, 21 Feb 2007 11:09:02 EST
Password must change: Mon, 18 Jan 2038 22:14:07 EST <-----------<---------<----------<-------------
Last bad password : 0
Bad password count : 0
Logon hours : FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
See what is says "Password Must change" It says Jan 18 2038. That is sure not 30 days away. Do I just ignore this and assume it will work? Maybe I have to move over some file or import these settings.
Please let me know if you can help.
Thanks