System Administration
cancel
Showing results for 
Search instead for 
Did you mean: 

How to configure samba to accept encrypted passwords only.

 
SOLVED
Go to solution
senthil_kumar_1
Super Advisor

How to configure samba to accept encrypted passwords only.

Hi All,

My samba server is intergrated with windows AD through kerberos client...

my smb.conf is having following option configured.

encrypt passwords = yes


My questions?

1)How to configure samba to accept only encrypted passwords?

OR

1)Is my samba server configured with encrypted password?

2)Will above configuration accept plain password?



3 REPLIES
Alzhy
Honored Contributor
Solution

Re: How to configure samba to accept encrypted passwords only.

smb.conf

encrypt password = Yes

Read : man smb.conf though.
Hakuna Matata.
senthil_kumar_1
Super Advisor

Re: How to configure samba to accept encrypted passwords only.

Hi Alzhy,

I have some questions.

1)How to check practically whether it is accepting encrypted passwords only, and it will accept plain text password.

2)How to supply the plain password and check Whether it is not allowing to access the samba shares?
Alzhy
Honored Contributor

Re: How to configure samba to accept encrypted passwords only.

You can enable debugging so smbd.log is moer verbose if you have the disk space (it is set I think in smb.conf or even likely in the smbd daemon startup -- unsure though)

Once you tell SMB to encrypt passwords - I don't think it will distinguish between plain and encryted password as the end user really is not involved in encrypting the password -- can you type an encrypted password in your SMB transactions?

Password encrypting is instituted in the LANMAN/SMB protocol so authentication params (passwords included) cannot be easily sniffed in the TCP packet by sniffers like snoop or ethereal, etc.

Hakuna Matata.