Samba admin passwords with spaces aren't quoted

[me@…]

I configured file sharing with a password containing spaces and saved the changes.

Error

Failed to enable: Error provisioning database: root command /usr/share/samba/setup/provision --domain=MOODY_SALON --workgroup=MOODY_SALON --realm=MOODYSALON.NET --dns-backend=BIND9_FLATFILE --server-role=dc --users=__USERS__ --host-name=moodysalon --adminpass=Wh1le being served. failed. 
Error output: Traceback (most recent call last):
   File '/usr/share/samba/setup/provision', line 262, in <module>
     useeadb=eadb, next_rid=opts.next_rid, lp=lp)
   File '/usr/lib/python2.7/dist-packages/samba/provision/__init__.py', line 1761, in provision
     am_rodc=am_rodc, lp=lp)
   File '/usr/lib/python2.7/dist-packages/samba/provision/__init__.py', line 1453, in provision_fill
     next_rid=next_rid, dc_rid=dc_rid)
   File '/usr/lib/python2.7/dist-packages/samba/provision/__init__.py', line 1288, in fill_samdb
     'KRBTGTPASS_B64': b64encode(krbtgtpass.encode('utf-16-le'))
   File '/usr/lib/python2.7/dist-packages/samba/provision/common.py', line 52, in setup_add_ldif
     ldb.add_ldif(data, controls)
   File '/usr/lib/python2.7/dist-packages/samba/__init__.py', line 226, in add_ldif
     self.add(msg, controls)
 _ldb.LdbError: (19, '0000052D: Constraint violation - check_password_restrictions: the password is too short. It should be equal or longer than 7 characters!')

Command output: Looking up IPv4 addresses
 More than one IPv4 address found. Using 192.168.1.1
 Looking up IPv6 addresses
 No IPv6 address will be assigned
 Setting up secrets.ldb
 Setting up the registry
 Setting up the privileges database
 Setting up idmap db
 Setting up SAM db
 Setting up sam.ldb partitions and settings
 Setting up sam.ldb rootDSE
 Pre-loading the Samba 4 and AD schema
 Adding DomainDN: DC=moodysalon,DC=net
 Adding configuration container
 Setting up sam.ldb schema
 Setting up sam.ldb configuration data
 Setting up display specifiers
 Adding users container
 Modifying users container
 Adding computers container
 Modifying computers container
 Setting up sam.ldb data
 Setting up well known security principals
 Setting up sam.ldb users and groups
. 
Exit value: 1

Trace

Failed to enable: Error provisioning database: root command /usr/share/samba/setup/provision --domain=MOODY_SALON --workgroup=MOODY_SALON --realm=MOODYSALON.NET --dns-backend=BIND9_FLATFILE --server-role=dc --users=__USERS__ --host-name=moodysalon --adminpass=Wh1le being served. failed. 
Error output: Traceback (most recent call last):
   File '/usr/share/samba/setup/provision', line 262, in <module>
     useeadb=eadb, next_rid=opts.next_rid, lp=lp)
   File '/usr/lib/python2.7/dist-packages/samba/provision/__init__.py', line 1761, in provision
     am_rodc=am_rodc, lp=lp)
   File '/usr/lib/python2.7/dist-packages/samba/provision/__init__.py', line 1453, in provision_fill
     next_rid=next_rid, dc_rid=dc_rid)
   File '/usr/lib/python2.7/dist-packages/samba/provision/__init__.py', line 1288, in fill_samdb
     'KRBTGTPASS_B64': b64encode(krbtgtpass.encode('utf-16-le'))
   File '/usr/lib/python2.7/dist-packages/samba/provision/common.py', line 52, in setup_add_ldif
     ldb.add_ldif(data, controls)
   File '/usr/lib/python2.7/dist-packages/samba/__init__.py', line 226, in add_ldif
     self.add(msg, controls)
 _ldb.LdbError: (19, '0000052D: Constraint violation - check_password_restrictions: the password is too short. It should be equal or longer than 7 characters!')

Command output: Looking up IPv4 addresses
 More than one IPv4 address found. Using 192.168.1.1
 Looking up IPv6 addresses
 No IPv6 address will be assigned
 Setting up secrets.ldb
 Setting up the registry
 Setting up the privileges database
 Setting up idmap db
 Setting up SAM db
 Setting up sam.ldb partitions and settings
 Setting up sam.ldb rootDSE
 Pre-loading the Samba 4 and AD schema
 Adding DomainDN: DC=moodysalon,DC=net
 Adding configuration container
 Setting up sam.ldb schema
 Setting up sam.ldb configuration data
 Setting up display specifiers
 Adding users container
 Modifying users container
 Adding computers container
 Modifying computers container
 Setting up sam.ldb data
 Setting up well known security principals
 Setting up sam.ldb users and groups
. 
Exit value: 1 at /usr/share/perl5/EBox/CGI/ServiceModule/ConfigureModuleController.pm line 72
	EBox::CGI::ServiceModule::ConfigureModuleController::_process('EBox::CGI::ServiceModule::ConfigureModuleController=HASH(0xbc...') called at /usr/share/perl5/EBox/CGI/Base.pm line 274
	EBox::CGI::Base::run('EBox::CGI::ServiceModule::ConfigureModuleController=HASH(0xbc...') called at /usr/share/perl5/EBox/CGI/Run.pm line 132
	EBox::CGI::Run::run('EBox::CGI::Run', 'ServiceModule/ConfigureModuleController', 'EBox') called at /usr/share/zentyal/cgi/ebox.cgi line 34
	ModPerl::ROOT::ModPerl::Registry::usr_share_zentyal_cgi_ebox_2ecgi::handler('Apache2::RequestRec=SCALAR(0xbcbd006c)') called at /usr/lib/perl5/ModPerl/RegistryCooker.pm line 204
	eval {...} called at /usr/lib/perl5/ModPerl/RegistryCooker.pm line 204
	ModPerl::RegistryCooker::run('ModPerl::Registry=HASH(0xbc5e0704)') called at /usr/lib/perl5/ModPerl/RegistryCooker.pm line 170
	ModPerl::RegistryCooker::default_handler('ModPerl::Registry=HASH(0xbc5e0704)') called at /usr/lib/perl5/ModPerl/Registry.pm line 31
	ModPerl::Registry::handler('ModPerl::Registry', 'Apache2::RequestRec=SCALAR(0xbcbd006c)') called at -e line 0
	eval {...} called at -e line 0

[anonymous]

zentyal.log

[me@…]

The problem seems to be escaping spaces.

[jacalvo@…]

That password is now autogenerated and stored in /var/lib/zentyal/conf/samba.passwd instead of having it readable on the Zentyal UI. For a normal use (joining computers to the domain, etc, you should create a user and add it to the Domain Admins group).