thanks for response:
I am using the following ACL. With this ACL client can change its password with passwd comman while loggin to the server directly while prompting the old password, but not in the case of client machine.
#access to *
by self write
by users read
by anonymous auth
#ACL through which we can change user password on Server with passwd command.
access to dn.subtree="ou=People,dc=example,dc=com" attrs=userpassword
by self write
by anonymous auth
by * none
access to * by * read
#ACL obtained by Gentoo
access to attrs="userPassword"
by dn="uid=root,ou=People,dc=example,dc=com" write
by dn="uid=testuser,ou=People,dc=example,dc=com" write
by anonymous auth
by self write
by * none
access to *
by dn="uid=root,ou=People,dc=example,dc=com" write
by * search
|