Fedora Users — Re: {RESOLVED} Re: AD + Openldap, change passwd failed

Re: {RESOLVED} Re: AD + Openldap, change passwd failed

Date Prev

Date Next

Thread Prev

Thread Next

Date Index

Thread Index

To: Yang Xiao <yxiao2004@xxxxxxxxx>, For users of Fedora Core releases <fedora-list@xxxxxxxxxx>

Subject: Re: {RESOLVED} Re: AD + Openldap, change passwd failed

From: Patrick Nelson <pnelson@xxxxxxxxxxx>

Date: Wed, 29 Sep 2004 13:59:41 -0700

Cc:

In-reply-to: <[email protected]>

References: <[email protected]> <[email protected]>

Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>

User-agent: Mozilla Thunderbird 0.6 (X11/20040519)

Yang Xiao wrote:

Use kpasswd instead of passwd or ldappasswd.

Yang

On Tue, 28 Sep 2004 19:51:53 -0400, Yang Xiao <yxiao2004@xxxxxxxxx> wrote:

Hi all,
For all the LDAP gurus out there, I have openldap setup on FC2 to be a
client of MS server 2003 AD, user authentication works fine, but
attempts to change passwd failed.

[root@mymachine root]# passwd yxiao
Changing password for user yxiao.
Enter login(LDAP) password:
New UNIX password:
Retype new UNIX password:
LDAP password information update failed: Unknown error
00002077: SvcErr: DSID-03190DC8, problem 5003 (WILL_NOT_PERFORM), data 0

passwd: Permission denied

and in /var/log/messages
Sep 28 19:46:59 mymachine passwd[8537]: pam_ldap: ldap_modify_s Server
is unwilling to perform
Sep 28 19:47:10 mymachine passwd[8538]: pam_ldap: ldap_modify_s Server
is unwilling to perform

Many thanks,

Yang

Just about to embark on this OpenLDAP to be a client to a AD. Do you have a Howto you could share?