On Wednesday, 23 June 2010 14:39:03 Allgood, John wrote:
Hey All
I have a question for you all. I am using openldap 2.4.31 on Centos 5.5 and using the ppolicy overlay. I have also compiled the smbk5 module to update the samba attr when the user password is updated. My problem is to change the password and have the samba password update I have to use ldappasswrd which works great. If I force a pwdReset and login via gdm the password program take over and sets the posix password but this does not change the samba side nor does it adhere to the ppolicy.
I assume that by "adhere to the policy", you mean policy settings pertaining to new password quality (e.g. minimum length)?
I am thinking this may something related to /etc/pamd/system-auth file but not sure. Any feedback would be appreciated.
In /etc/ldap.conf, set:
pam_password exop
Regards, Buchan