[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: How to let users change their passwords?

To: openldap-technical@openldap.org
Subject: Re: How to let users change their passwords?
From: Buchan Milne <bgmilne@staff.telkomsa.net>
Date: Tue, 27 Jul 2010 16:22:40 +0100
Cc: Steven Truong <midair77@gmail.com>
In-reply-to: <AANLkTi=acrxqFP3mn9vAuxCuHiCzd8YWcvu44bm4qWNg@mail.gmail.com>
References: <AANLkTi=acrxqFP3mn9vAuxCuHiCzd8YWcvu44bm4qWNg@mail.gmail.com>
User-agent: KMail/1.12.4 (Linux/2.6.31.13-desktop-1mnb; KDE/4.3.5; x86_64; ; )

On Friday, 23 July 2010 21:49:36 Steven Truong wrote:
> Dear, all.  I have been searching low and high for a tool that can let
> users to change their passwords in 389 DS or OpenLDAP?  I think there
> is a real need for such a tool and I hope that people already wrote
> such a tool...
> 
> Please share your ways of how you allow your users to change their
> passwords or other setup/architecture that allow this function.
> 
> Beside that, I also recommend Apache Studio as a great tool to work
> with LDAP servers.....
> Thank you in advance.

For users who don't authenticate via PAM or similar, I wrote a simple perl CGI 
(which supports ppolicy):

http://staff.telkomsa.net/~bgmilne/ldap/ldap-passwd.pl

I use it in conjunction with a script to notify users of their impending 
password expiry:

http://staff.telkomsa.net/~bgmilne/ldap/find-ldap-expired.pl

They share config files, but you can use the first without the 2nd.

I have only used it against OpenLDAP so far, but I might need to add support 
for AD soon ...

Regards,
Buchan

Follow-Ups:
- Re: How to let users change their passwords?
  - From: Steven Truong <midair77@gmail.com>

References:
- How to let users change their passwords?
  - From: Steven Truong <midair77@gmail.com>

Prev by Date: Re: Server Side sort and the cn attribute
Next by Date: Re: How to let users change their passwords?
Index(es):
- Chronological
- Thread