Description of problem: Samba sever and LDAP passwords do not sync when changed in ldap (with samba installed as a PDC and openldap as the backend store for passwords) ... though windows changes do (if properly enabled) sync to ldap. openldap has a contrib module that is already distributed in the Fedora / RHEL source files that can build the smbk5pwd module that takes care of this issue. I am attaching a patch that I used to produce this module for the CentOS-4 CentOSPlus repository, in case you want to build this module in Fedora Core (or RHEL). Version-Release number of selected component (if applicable): The patch is to version 2.3.27-4 of openldap. Additional info: In the patch, I remove the BuildRequires "bind-libbind-devel, libtool-ltdl-devel " to build on EL4 ... not required to be removed if built on >EL5 or >FC6. Also, feel free to remove the CentOS readme part of the patch that appends to the original readme.
Created attachment 144465 [details] Contains a spec file patch and an OS patch to enable smbk5pwd on openldap-2.3.27-4.src.rpm
Sorry for not closing the bug earlier - openldap-2.3.34-4 was released some time ago, providing all overlays, including smbk5pwd. I must confess I was inspired by your patch (although final implementation is a bit different).