[Ltb-users] unable to change password in samba/ldap config

Clément OUDOT clem.oudot at gmail.com
Fri Jun 1 22:42:57 CEST 2012


Le 1 juin 2012 20:39, "Serge Le Garrec" <serge.le-garrec at manche.gouv.fr> a
écrit :
>
> Hi
>
> When I try to change password for toto I can find error number 50 (
err=50 ) at the end of the openldap request.
>
> #cat /var/log/syslog
>
> Jun  1 20:26:56 linuxserveur2 slapd[18672]: conn=1064 fd=13 ACCEPT from
IP=10.50.43.20:32854 (IP=0.0.0.0:389)
> Jun  1 20:26:56 linuxserveur2 slapd[18672]: conn=1064 op=0 BIND
dn="cn=manager,ou=agriculture,o=gouv,c=fr" method=128
> Jun  1 20:26:56 linuxserveur2 slapd[18672]: conn=1064 op=0 BIND
dn="cn=manager,ou=agriculture,o=gouv,c=fr" mech=SIMPLE ssf=0
> Jun  1 20:26:56 linuxserveur2 slapd[18672]: conn=1064 op=0 RESULT tag=97
err=0 text=
> Jun  1 20:26:56 linuxserveur2 slapd[18672]: conn=1064 op=1 SRCH
base="ou=people,ou=agriculture,o=gouv,c=fr" scope=2 deref=0
filter="(&(objectClass=person)(uid=toto))"
> Jun  1 20:26:56 linuxserveur2 slapd[18672]: conn=1064 op=1 SEARCH RESULT
tag=101 err=0 nentries=1 text=
> Jun  1 20:26:56 linuxserveur2 slapd[18672]: conn=1064 op=2 BIND anonymous
mech=implicit ssf=0
> Jun  1 20:26:56 linuxserveur2 slapd[18672]: conn=1064 op=2 BIND
dn="uid=toto,ou=People,ou=agriculture,o=gouv,c=fr" method=128
> Jun  1 20:26:56 linuxserveur2 slapd[18672]: conn=1064 op=2 BIND
dn="uid=toto,ou=People,ou=agriculture,o=gouv,c=fr" mech=SIMPLE ssf=0
> Jun  1 20:26:56 linuxserveur2 slapd[18672]: conn=1064 op=2 RESULT tag=97
err=0 text=
> Jun  1 20:26:56 linuxserveur2 slapd[18672]: conn=1064 op=3 MOD
dn="uid=toto,ou=People,ou=agriculture,o=gouv,c=fr"
> Jun  1 20:26:56 linuxserveur2 slapd[18672]: conn=1064 op=3 MOD
attr=sambaNTPassword sambaPwdLastSet userPassword shadowLastChange
> Jun  1 20:26:56 linuxserveur2 slapd[18672]: conn=1064 op=3 RESULT tag=103
err=50 text=
> Jun  1 20:26:56 linuxserveur2 slapd[18672]: conn=1064 op=4 UNBIND
> Jun  1 20:26:56 linuxserveur2 slapd[18672]: conn=1064 fd=13 closed
>
>
> $debug is set to true
>
> I received the following errors messages :
>
>
> Warning: preg_match_all() [function.preg-match-all]: Compilation failed:
missing terminating ] for character class at offset 2 in
/usr/share/self-service-password/lib/functions.inc.php on line 153
>
> Notice: Undefined variable: hash in
/usr/share/self-service-password/pages/change.php on line 151
>
> Warning: ldap_mod_replace() [function.ldap-mod-replace]: Modify:
Insufficient access in
/usr/share/self-service-password/lib/functions.inc.php on line 257
>
> Have you got an idea ?

Yes,

you have an ACL problem : a user do not have the right to change its
password.

Clément OUDOT
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ltb-project.org/pipermail/ltb-users/attachments/20120601/b8f1fdcc/attachment.htm>


More information about the ltb-users mailing list