[Date Prev][Date Next] [Chronological] [Thread] [Top]

Admin user has two passwords

To: openldap-technical@openldap.org
Subject: Admin user has two passwords
From: Wiebe Cazemier <wiebe@halfgaar.net>
Date: Mon, 24 Dec 2012 14:15:59 +0100 (CET)
In-reply-to: <1536526668.12292.1356354286847.JavaMail.root@halfgaar.net>
Thread-index: 10lhzzmVlXvkIBWQMiJLXg5OxaWDdA==
Thread-topic: Admin user has two passwords

Hi, 

I tried changing the password for the admin user in my OpenLDAP tree, but now I can log in with both. When I do this:

ldapsearch -vxZZH ldap://ldap.domain.tld/ -D "cn=admin,dc=domain,dc=tld" -W

Entering a wrong password makes it fail, but entering the old or new password both work.

I thought maybe it used the root account, so in an attempt to fix this, I tried setting the rootpw with this:


# cat change-rootpw.ldif 
dn: olcDatabase={0}config,cn=config
replace: olcRootPW
olcRootPW: {SSHA}some hash

ldapmodify -v -Y EXTERNAL -H ldapi:/// -f change-rootpw.ldif 


But that didn't fix it.

I'm quite confused. Any help is appreciated.

Regards,

Wiebe

Follow-Ups:
- Re: Admin user has two passwords
  - From: Maarten Vanraes <maarten.vanraes@gmail.com>

Prev by Date: Re: How to force password change upon account creation
Next by Date: Re: How to force password change upon account creation
Index(es):
- Chronological
- Thread