LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Server (https://www.linuxquestions.org/questions/linux-server-73/)
-   -   PAM configuration for changing password on LDAP client machine (https://www.linuxquestions.org/questions/linux-server-73/pam-configuration-for-changing-password-on-ldap-client-machine-802338/)

sharjeel 04-16-2010 02:22 AM
PAM configuration for changing password on LDAP client machine
 
I have configured LDAP server on RHEL 5.2 Linux.
Client is unable to change its password from client linux box.
I think there is PAM configuration problem in /etc/pam.d/system-auth file.
What will be the exact entries in this file.


help

frndrfoe 04-16-2010 10:31 AM
Do you have an ACL in LDAP to allow the user to change the password?

sharjeel 04-19-2010 02:33 AM
thanks for response:

I am using the following ACL. With this ACL client can change its password with passwd comman while loggin to the server directly while prompting the old password, but not in the case of client machine.

#access to *
by self write
by users read
by anonymous auth

#ACL through which we can change user password on Server with passwd command.
access to dn.subtree="ou=People,dc=example,dc=com" attrs=userpassword
by self write
by anonymous auth
by * none
access to * by * read

#ACL obtained by Gentoo
access to attrs="userPassword"
by dn="uid=root,ou=People,dc=example,dc=com" write
by dn="uid=testuser,ou=People,dc=example,dc=com" write
by anonymous auth
by self write
by * none

access to *
by dn="uid=root,ou=People,dc=example,dc=com" write
by * search

sharjeel 05-13-2011 01:28 AM
ok I got it. Actually it was problem of my distribution.
command to change password is /usr/bin/passwd


All times are GMT -5. The time now is 01:53 AM.