First Last Prev Next    This bug is not in your last search results.
Bug 37018 - pdbedit (password history) broken in samba4 rc2
pdbedit (password history) broken in samba4 rc2
Status: CLOSED FIXED
Product: UCS Test
Classification: Unclassified
Component: Samba
unspecified
Other Linux
: P5 normal (vote)
: ---
Assigned To: Dmitry Galkin
https://bugzilla.samba.org/show_bug.c...
:
Depends on: 36755
Blocks:
  Show dependency treegraph
 
Reported: 2014-11-26 07:09 CET by Stefan Gohmann
Modified: 2023-03-25 06:48 CET (History)
2 users (show)

See Also:
What kind of report is it?: Development Internal
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Stefan Gohmann univentionstaff 2014-11-26 07:09:23 CET 
Please check if a test case is possible.

+++ This bug was initially created as a clone of Bug #36755 +++

UCS 4.0 univention-samba

https://groups.google.com/forum/#!topic/mailing.unix.samba/bwvhW6hnvrs

If i configure the passwordHistory

-> udm settings/sambadomain modify \
   --dn sambaDomainName=FB,cn=samba,dc=fb,dc=test \
   --set passwordHistory=3

or
-> pdbedit -P "password history" -C 3

samba no longer finds user objects.

-> pdbedit  -Lv fb1
pdb_set_pw_history: data_blob_talloc() failed!
Username not found!

-> smbclient  //master/fb1 -U fb1%univention
Domain=[FB] OS=[Windows 6.1] Server=[Samba 4.2.0rc2-Debian]
tree connect failed: NT_STATUS_ACCESS_DENIED

The only way to "repair" this, is to remove the password history

-> pdbedit -P "password history" -C 0 

Setting the password history via UDM (to 0) does not help!
Comment 1 Dmitry Galkin univentionstaff 2015-04-21 16:53:38 CEST 
(In reply to Stefan Gohmann from comment #0)
> Please check if a test case is possible.

1. Test creates a user
2. Modifies the domain password history via UDM
3. Checks that modification worked via samba-tool
4. Tries to find initially created test user via pdbedit
5. Tries to access sysvol with test user credentials via smbclient

r60036:
 * 51_samba4/58pwdHistoryChange: check that samba domain password history
   change works (Bug #37018).
Comment 2 Stefan Gohmann univentionstaff 2016-10-12 07:48:33 CEST 
For this bug is no separate QA needed.
First Last Prev Next    This bug is not in your last search results.