[389-users] Re: Change users password using horde's module passwd

Tue, 12 Apr 2016 04:36:12 -0700 

Hi,
I was not talking about access control, but about password policy - quality of passwords, reuse, expiration, when it can be changed ... 
Please read:
https://access.redhat.com/documentation/en-US/Red_Hat_Directory_Server/10/html/Administration_Guide/User_Account_Management.html#User_Account_Management-Managing_the_Password_Policy


On 04/12/2016 12:35 PM, wodel youchi wrote:

Hi, and thanks
But as I understand, there is and AC created for ou=people,dc=example,dc=com called "Allow self entry modification" and userPassword attribute is selected for write. 
is there another AC that supersedes this one?

Regards.
2016-04-12 11:19 GMT+01:00 Ludwig Krispenz <lkris...@redhat.com <mailto:lkris...@redhat.com>>: 


    On 04/12/2016 11:50 AM, wodel youchi wrote:

    Hi,

    I am trying to make horde's module passwd let users change their
    passwords.

    In the configuration file of the moduke there are two options for
    ldap :

    - ldap : this option uses the users credentials to modify the
    password (the user change his password with his credentials).

    - ldapadmin : this option uses the admin, such as the Directory
    Manager to modify the user's password.

    the first one, didn't work for me, I get in the horde log : could
    not replace userPassword attribute, LDAP server : constraint
    violation.

    the second one worked.

    In the error log of 389DS, I didn't find any useful error message.

    PS : tls is enabled.


    any idea?

    changing th pw as user, you probably violate the password policy




    Regards.


    --
    389 users mailing list
    389-users@%(host_name)s
    http://lists.fedoraproject.org/admin/lists/389-users@lists.fedoraproject.org
-- Red Hat GmbH,http://www.de.redhat.com/, Registered seat: Grasbrunn, 
    Commercial register: Amtsgericht Muenchen, HRB 153243,
    Managing Directors: Paul Argiry, Charles Cachera, Michael Cunningham, 
Michael O'Neill


    --
    389 users mailing list
    389-users@%(host_name)s
    http://lists.fedoraproject.org/admin/lists/389-users@lists.fedoraproject.org




--
389 users mailing list
389-users@%(host_name)s
http://lists.fedoraproject.org/admin/lists/389-users@lists.fedoraproject.org


--
Red Hat GmbH, http://www.de.redhat.com/, Registered seat: Grasbrunn,
Commercial register: Amtsgericht Muenchen, HRB 153243,
Managing Directors: Paul Argiry, Charles Cachera, Michael Cunningham, Michael 
O'Neill


--
389 users mailing list
389-users@%(host_name)s
http://lists.fedoraproject.org/admin/lists/389-users@lists.fedoraproject.org

Reply via email to