Re: [Samba] Samba authentication to Kerberos via OpenLDAP,

--===============1984982589==
Content-Type: multipart/signed; micalg=pgp-sha1;
protocol="application/pgp-signature"; boundary="/04w6evG8XlLl3ft"
Content-Disposition: inline


--/04w6evG8XlLl3ft
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Thu, Apr 03, 2008 at 01:34:30PM -0700, Wes Modes wrote:
> The question and the challenge: Any leads on how I might convince Samba=
=20
> to pass the input password on to OpenLDAP so that OpenLDAP can=20
> authenticate it against Kerberos?

The only chance is that you modify each client's registry to
send plain text passwords to the server over the network,
downgrading your security to what telnet provided ages ago.
You can guess that this is ABSOLUTELY NOT recommended. If
you go with standard Windows authentication schemes, the
SMB server never sees the user's plain text password which
would be required to authenticate against Kerberos.

Volker

--/04w6evG8XlLl3ft
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFH9UN7UzqjrWwMRl0RAhGkAJ9+XVIJTGuB5OqkANkK7r 696xKWywCdFgq6
DwAEPispUnqeCREENjzVc48=
=U8/5
-----END PGP SIGNATURE-----

--/04w6evG8XlLl3ft--

--===============1984982589==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
--===============1984982589==--