[horde] Re: LDAP authentication and password resets

Kevin Myer kevin_myer at iu13.org
Tue Apr 5 02:37:13 PDT 2005


Quoting Craig White <craigwhite at azapple.com>:

> ----
> Seems to be of little benefit since much of LDAP integrates with other
> services to provide single sign on and changing userPassword attr but
> not sambaNTPassword or sambaLMPassword is of little interest - at least
> to me.
>

We would be implementing password changing for "smbldap", which would change
your primary password (would not necessarily have to be userPassword, 
maybe not
everyone uses that attribute), and also changing of your NTLM hash.  Seems to
be of tremendous benefit to me...  Not everyone stores NTLM hashes in LDAP or
even has need to use them.  Service providers for ISPs would have no reason to
even provide SMB access to their clients (but they're probably using 
RADIUS for
authentication anyway).

Kevin

-- 
Kevin M. Myer
Senior Systems Administrator
Lancaster-Lebanon Intermediate Unit 13  http://www.iu13.org
(717) 560-6140



More information about the horde mailing list