LinuxQuestions.org
Help answer threads with 0 replies.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
Reload this Page Change ldap user password issue
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 12-08-2013, 04:58 AM   #1
zeusys
Member
 
Registered: Jun 2006
Posts: 31

Rep: Reputation: 0
Question Change ldap user password issue

Hi.

I want to allow users to change their own password.I write an ACL in olcDatabase={2}bdb.ldif file :
Code:
olcAccess: {0}to dn.children="uid=.*,ou=SUDOers,dc=tytech,dc=com"
           attrs=userPassword
           by self write
           by * auth
           by dn.base="cn=manager,dc=tytech,dc=com" write
           by * none
Also I've created a test user called "leo" with password 123456 and try to run the following command to change its password:
Code:
[leo@c62clnt ~]$ ldappasswd -x -W -S -D 'uid=leo,ou=SUDOers,dc=tytech,dc=com'
New password:
Re-enter new password:
Enter LDAP Password:   ####I entered 123456 which required also to login using leo user
ldap_bind: Invalid credentials (49)
I don't know how to fix this issue.I think maybe my ACL has a problem and doesn't allow user to change their password,but ldappasswd return Invalid credentials.
Please guide me how to fix this issue
Thank you
----
Distro : CentOS 6.2 x64
openLDAP Server version : 2.4.23
 
Old 12-08-2013, 10:13 AM   #2
hussam.dh
LQ Newbie
 
Registered: Nov 2013
Posts: 16

Rep: Reputation: Disabled
I ran through this issue before ane the solution was to use the right ACLs.
Drop the uid=* part from dn.children so it looks like:
dn.children="ou=..."
Then modify "by * auth" to be:
by anonymous auth
You don't need to give the directory manager any rights because by default he has full access.
You must give the users read access over their other attributes.
For changing password just use the regular passwd command.
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Change LDAP's user password as root wegadnie Linux - Server 3 11-08-2013 02:45 AM
[SOLVED] ldap user not able to change own password Karljoe2 Linux - Server 3 05-03-2012 09:58 PM
how do a user can change its LDAP password on Linux client machine sharjeel Linux - Server 5 05-13-2011 01:25 AM
How to make Ldap test user to automatically change his password after 2 days? nandanm1 Linux - Server 0 05-29-2009 12:13 PM
change password at slave ldap u4113072 Linux - Software 0 11-12-2002 02:50 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 11:16 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration