[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Allow users to change ldap password with passwd

To: Michael Ströder <michael@stroeder.com>, "openldap-technical@openldap.org" <openldap-technical@openldap.org>
Subject: Re: Allow users to change ldap password with passwd
From: "Real, Elizabeth (392K)" <Elizabeth.Real@jpl.nasa.gov>
Date: Thu, 24 Sep 2015 18:19:49 +0000
Accept-language: en-US
Content-language: en-US
In-reply-to: <56043D04.6060808@stroeder.com>
References: <D22182AC.F547%Elizabeth.Real@jpl.nasa.gov> <55FC3B5E.9010701@stroeder.com> <D229806C.FDC6%Elizabeth.Real@jpl.nasa.gov> <56043966.60100@stroeder.com> <D22989C8.FDF9%Elizabeth.Real@jpl.nasa.gov> <56043D04.6060808@stroeder.com>
Thread-index: AQHQ8irY1XqsagEwKECIHh9Q/CK1gp5C7r4AgAkPNICAAHfcAP//jb4AgAB2kgD//4y8gA==
Thread-topic: Allow users to change ldap password with passwd

I replaced ou with cn, tried loading the ldif and got this message:

# ldapadd -Y EXTERNAL -H ldapi:/// -D "cn=config" -f passwordPolicy.ldif

SASL/EXTERNAL authentication started

SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth

SASL SSF: 0

adding new entry "cn=policies,dc=*****,dc=*****"

ldap_add: Insufficient access (50)

additional info: no write access to parent

Thank you,

Liz

From: Michael Ströder <michael@stroeder.com>
Date: Thursday, September 24, 2015 at 11:12 AM
To: Elizabeth Real Chavez <Elizabeth.Real@jpl.nasa.gov>, "openldap-technical@openldap.org" <openldap-technical@openldap.org>
Subject: Re: Allow users to change ldap password with passwd

Real, Elizabeth (392K) wrote:

This is the passwordPolicy.ldif:

dn: ou=policies,dc=*****,dc=*****

objectClass: pwdPolicy

objectClass: person

objectClass: top

cn: policies

sn: policies

If that is what you want to use you cannot use ou for forming the RDN.

Simply use instead

dn: cn=policies,dc=*****,dc=*****

to match your entry.

Ciao, Michael.

Follow-Ups:
- Re: Allow users to change ldap password with passwd
  - From: Michael Ströder <michael@stroeder.com>

References:
- Allow users to change ldap password with passwd
  - From: "Real, Elizabeth (392K)" <Elizabeth.Real@jpl.nasa.gov>
- Re: Allow users to change ldap password with passwd
  - From: Michael Ströder <michael@stroeder.com>
- Re: Allow users to change ldap password with passwd
  - From: "Real, Elizabeth (392K)" <Elizabeth.Real@jpl.nasa.gov>
- Re: Allow users to change ldap password with passwd
  - From: Michael Ströder <michael@stroeder.com>
- Re: Allow users to change ldap password with passwd
  - From: "Real, Elizabeth (392K)" <Elizabeth.Real@jpl.nasa.gov>
- Re: Allow users to change ldap password with passwd
  - From: Michael Ströder <michael@stroeder.com>

Prev by Date: Re: Allow users to change ldap password with passwd
Next by Date: Re: Allow users to change ldap password with passwd
Index(es):
- Chronological
- Thread