LDAP Users cannot change password
Nicolas Roussi
nroussi at gmail.com
Fri Jan 8 16:58:22 GMT 2010
Just in case someone has the same problem; Apparently you need to change
something in the slapd.conf of the server and add the following:
access to
attrs=userPassword,sambaNTPassword,sambaLMPassword,sambaPwdMustChange,sambaPwdLastSet
by dn="cn=admin,dc=workgroup" write
by self write
by anonymous auth
by * none
access to attrs=shadowLastChange,shadowMax
by dn="cn=admin,dc=workgroup" write
by self write
by * read
I cant say if it works since I did somthing else. What I did is I downloaded
an LDAP GUI from LDAPsoft and used the SQL editor to change shadowMax field
to 0 for all users. That removed the expired password issue.
On Wed, Jan 6, 2010 at 10:40 AM, Nicolas Roussi <nroussi at gmail.com> wrote:
> Hi everyone,
> I have an LDAP server and a few edubuntu servers as LDAP clients. The LDAP
> users login through the thin clients and everything works perfectly but when
> their passwords expire, they cannot change them through the login interface.
> They receive a message that "Your password has expired and you need to
> change it.". Then they type their new password and confirm it but it just
> kicks back to the login screen. I know it has something to do with some pam
> settings but I cant figure it out. Does anyone have any solutions?
>
> Thanks
>
> --
> Nicolas Roussi
>
--
Nicolas Roussi
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.ubuntu.com/archives/edubuntu-users/attachments/20100108/289b86ed/attachment.htm
More information about the edubuntu-users
mailing list