I have a Samba 3.0.3 system setup with LDAP. I can set the "min password length" in smb.conf and the system will respect that but when changing the password from win2k and giving it a smaller password than set it always displays "password must be a minimum of 5 characters" It will display this even if "min password length" is set to 7. You won't actually be able to have a password less than 7 but it confuses the hell out of our users.
Are there any messages in the log file when this happens? You will need to set your 'debug level' in smb.conf to at least 1.
debug level = 10 is probably the best idea
This is caused by the default value of the account_policy "min password length" (5) that perfectly collides with lp_min_passwd_length. Both value's are checked after each other during a password change (actually causing a problematic situation, if one these values is less then the default value of 5). The client itself queries the password-policy-settings just for the account-policy and thus displays "5". As a quick workaround you could set the account poliy to the same value as your smb.conf option via pdbedit -P "min password length" -C 7 Tim, shouldn't we remove lp_min_passwd_length completly?
George, any news on this? Did setting the account-policy with pdbedit helped you?
gd, mark 'min password length' as deprecated in loadparm.c. Then remove it's actual use in the code. Then go ahead and close this bug. My rule is that no feedback in over 30 days == automatic close (at your discetion).
The initial reported gave me positive feedback on my solution proposed in comment #7. Just marked "min password length" as depreciated now, People should use the corresponding Account Policy instead.
all we're doing on this one for now.
sorry for the same, cleaning up the database to prevent unecessary reopens of bugs.