Ben Higginbottom wrote:
I've just installed it via apt and added the line into my /etc/pam.d/login so it now looks like this:
#%PAM-1.0 auth required pam_securetty.so auth required pam_env.so auth sufficient pam_unix2.so nullok auth sufficient pam_winbind.so use_first_pass auth optional /lib/security/pam_smbpw.so auth required pam_deny.so auth required pam_nologin.so account sufficient pam_winbind.so account required pam_unix2.so password required pam_pwcheck.so nullok #password required pam_unix2.so nullok use_first_pass use_authtok session sufficient pam_unix2.so none # debug or trace session sufficient pam_limits.so session required pam_mkhomedir.so skel=/etc/skel/ umask=0022
My file looks similar, apart from lacking the two winbind entries, judging from the name the are probably significant!
And it seems to be working for me, certainly I can browse about the domain I'm a member of withput a problem, but I am authenticated as a domain admin when I logon which might help. It may be worth having a chat with your sysadmins to see if there is anything they have setup to stop passwords being cached, or shares being browsed.
My W2K box is fine! -- Tim Nicholson BBCi at http://www.bbc.co.uk/ This e-mail (and any attachments) is confidential and may contain personal views which are not the views of the BBC unless specifically stated. If you have received it in error, please delete it from your system. Do not use, copy or disclose the information in any way nor act in reliance on it and notify the sender immediately. Please note that the BBC monitors e-mails sent or received. Further communication will signify your consent to this.