1 <samba:parameter name="update encrypted"
3 basic="1" advanced="1" developer="1"
4 xmlns:samba="http://samba.org/common">
7 <para>This boolean parameter allows a user logging on with
8 a plaintext password to have their encrypted (hashed) password in
9 the smbpasswd file to be updated automatically as they log
10 on. This option allows a site to migrate from plaintext
11 password authentication (users authenticate with plaintext
12 password over the wire, and are checked against a UNIX account
13 database) to encrypted password authentication (the SMB
14 challenge/response authentication mechanism) without forcing all
15 users to re-enter their passwords via smbpasswd at the time the
16 change is made. This is a convenience option to allow the change
17 over to encrypted passwords to be made over a longer period.
18 Once all users have encrypted representations of their passwords
19 in the smbpasswd file this parameter should be set to
20 <constant>no</constant>.</para>
22 <para>In order for this parameter to work correctly the <link linkend="ENCRYPTPASSWORDS">
23 <parameter moreinfo="none">encrypt passwords</parameter></link> parameter must
24 be set to <constant>no</constant> when this parameter is set to <constant>yes</constant>.</para>
26 <para>Note that even when this parameter is set a user
27 authenticating to <command moreinfo="none">smbd</command> must still enter a valid
28 password in order to connect correctly, and to update their hashed
29 (smbpasswd) passwords.</para>
31 <para>Default: <command moreinfo="none">update encrypted = no</command></para>