LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
Reload this Page Help in LDAP; Users can change their password
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 08-21-2009, 03:33 PM   #1
ashwintumma
LQ Newbie
 
Registered: May 2009
Location: Pune,India
Distribution: Ubuntu 8.10
Posts: 2

Rep: Reputation: 0
Help in LDAP; Users can change their password

Hello,
We are trying to create LDAP logins for users in the department.
Now, the problem that we are facing is, of PASSWORD CHANGED.

What we have done :
- Softwares Installed Successfully on Ubuntu 8.10:
Bekerley DB db-4.7.25
OpenLDAP openldap-2.4.16 Stable Release
- Created and added hierarchy.ldif, group and all useraccount files to slapd
- Configured LDAP Clients with libnss-ldap and LDAP Version 3
Here are some of the config. files
1. /etc/ldap/ldap.conf
base dc=coep,dc=org,dc=in
uri ldap://10.1.11.48

2. /etc/pam.d/common-account
account required pam_unix.so broken_shadow
account sufficient pam_succeed_if.so uid < 500 quiet
account [default=bad success=ok user_unknown=ignore] pam_ldap.so
account required pam_permit.so

3. /etc/pam.d/common-auth
auth required pam_env.so
auth sufficient pam_unix.so nullok try_first_pass
auth requisite pam_succeed_if.so uid >=500 quiet
auth sufficient pam_ldap.so use_first_pass
auth required pam_deny.so

4. /etc/pam.d/common-password
password requisite pam_cracklib.so try_first_pass retry=3
password sufficient pam_unix.so md5 shadow nullok try_first_pass use_authtok
password sufficient pam_ldap.so use_authtok
password required pam_deny.so

5. /etc/pam.d/common-session
session required pam_limits.so
session [success=1 default=ignore] pam_succeed_if.so service in crond quiet use_uid
session required pam_unix.so
session optional pam_ldap.so

6. /etc/nsswitch.conf
passwd: compat files ldap
group: compat files ldap
shadow: compat files ldap

hosts: files mdns4_minimal NOTFOUND=return] dns mdns4
networks: files

protocols: db files
services: db files
ethers: db files
rpc: db files

netgroup: nis


- The user logins are successful, but when we try to change the password of the user using the 'passwd' command, the following error occurs,
passwd: Module is unknown
passwd: password unchanged

We need to allow users change their passwords, by some means, because these same accounts will also be working with Moodle.
Tried searching a lot over the net, but didnt find required solutions. Kindly Help us in this.
 
Old 08-22-2009, 10:24 AM   #2
kbp
Senior Member
 
Registered: Aug 2009
Posts: 3,790

Rep: Reputation: 653Reputation: 653Reputation: 653Reputation: 653Reputation: 653Reputation: 653
Hi ashwintumma,

You may need to use 'ldappasswd', I don't think the capability is available in PAM,

cheers,

kbp
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
how do a user can change its LDAP password on Linux client machine sharjeel Linux - Server 5 05-13-2011 01:25 AM
Allow LDAP users to change passwords graystarr Linux - Server 1 03-10-2009 05:20 PM
password change over LDAP works only if TLS is disabled cyrilrip Linux - General 2 06-02-2005 01:26 AM
Allowing users to change passwords on LDAP topcat Linux - General 10 09-16-2004 12:09 PM
change password at slave ldap u4113072 Linux - Software 0 11-12-2002 02:50 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 05:42 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration