[Macpartners] Password change for Windows users on OS X server

[Kerem B Limon]

I don't have too much time to elaborate at the moment, but why not use
Kerberized SMB for your Windows users of the Mac OS X Server as well? You can
then have the same authentication method for all your systems. We do this at
CSAIL, and use integrated Kerberos logins for all of our authentication on all
platforms.

I can converse with you off-line to discuss details.

Regards,
-Kerem


Quoting Helen Rose <hrose at MIT.EDU>:

> My Mac users authenticate to my OS X server via Kerberos (MIT's KDC). 
> However, my Windows users have to rely on passwords set and stored 
> locally on the server. None of them have shell access to log in to 
> the server (paranoid? me?).
> 
> I typically set them with a default password, but what I would very 
> much like is to set their password and allow them to change it 
> remotely, via a webpage. A good solution seems to be web-chpass 
> (http://www.unicom.com/sw/web-chpass/). However, although the 
> software compiles, I get persistent error messages via the web page 
> that the password cannot be changed.
> 
> I grovelled through the code, and it has something to do with the 
> pam_chauthtok routine. The code accurately verifies the user's 
> existing password (because if the existing password is incorrect, the 
> error message is different).
> 
> Any clues on where I might look? Or does anyone have another 
> suggestion on how I can accomplish web-based password changes?
> 
> Thanks!
> 
> --Helen
> _______________________________________________
> Macpartners mailing list
> Macpartners at mit.edu
> http://mailman.mit.edu/mailman/listinfo/macpartners
> 


Kerem B. Limon
kerem.limon at mit.edu /e-mail