[Date Prev][Date Next] [Chronological] [Thread] [Top]

meta database - password problems with one target

To: openldap-technical@openldap.org
Subject: meta database - password problems with one target
From: Matthew Harrell <mharrell-keyword-openldap.bf17ca@bitnerd.com>
Date: Tue, 26 Jan 2010 21:33:24 -0500
Content-disposition: inline
Dkim-signature: v=1; a=rsa-sha1; c=relaxed; d=bitnerd.com; h=mime-version:subject:date:message-id:content-type:to:from; s=alecto; bh=Ww05QvBOa0wiHSeBerQmOBOPxuA=; b=N4nHjuk/hAt47nTgDUxpy9kqf7cKaoTNaBp/+U1C47eRor6UY7vt2gTM+Pjr8r7Clui7qTDaBTZ3nYapwxNXysq3QWyw3JivrTDxMpYh5m8eXh5gz0wpyfpWQTfUN34+jLk24qfpaUKYKBbR7tXPJd7gLJBhninVKm6m1Jg5Tg0=
User-agent: Mutt/1.5.20 (2009-06-14)

Before I forget the link here is the config file I'm using

  http://alecto.bittwiddlers.com/files/slapd.conf

I have two separate databases of user information and a meta database at
the bottom of the file that joins them together so both can log in.  The
meta database is what's used for the system pam and nss settings.  All
of that seems to work fine - no problems with the logging in, groups, or
any of that.  Users that belong to the second database, zone2, can 
change their passwords using any of the standard commands including 
passwd.  Users in the first database, zone1, are unable to change 
their passwords

  {153}: passwd
  New password: 
  Re-enter new password: 
  LDAP password information update failed: Strong(er) authentication required
  modifications require authentication
  passwd: Permission denied
  passwd: password unchanged

I've looked at the ACL and stats logs for both the accounts that work and
those that don't but there's a lot of information there and I can't tell
what the problem is.  I'm rather new to LDAP in general.  Can someone give
me some pointers or ideas for what I can look for?

Thanks for any help

Prev by Date: Re: Bind accepts any password where the real password is a prefix?
Next by Date: cn=config config problem
Index(es):
- Chronological
- Thread