Thanks, I saw Rich?s presentation. This really had me stumped so I figure this had to be something on my side. I went back to the drawing board and reviewed everything and then by mistake, I found the issue. In /etc/ldap.conf, I had pam_password racf configured correctly but later on in the ldap.conf there was a pam_password exop configured. I commented out pam_password exop and now everything is working correctly. So far, RACF LDAP with TDBM is working great now. Thanks to all that viewed this issue.
Peter From: Alan Altmark <alan_altm...@us.ibm.com> To: LINUX-390@vm.marist.edu Date: 08/16/2011 11:38 AM Subject: Re: RACF LDAP and Linux passwd command Sent by: Linux on 390 Port <LINUX-390@vm.marist.edu> On Tuesday, 08/16/2011 at 07:35 EDT, "Peter E. Abresch Jr. - at Pepco" <peabre...@pepco.com> wrote: > After a good night sleep, I delved into this problem further. I do not > think this is an ACL issue as I can change the password using the > ldapmodify command. That's a bit confusing since > R006010 Unsupported extended operation '1.3.6.1.4.1.4203.1.11.1' is a reference to "Modify password". Consider looking, too, at Rich Smrcina's presentation, http://linuxvm.org/present/SHARE112/S9156rs.pdf. The z/VM LDAP server is at the z/OS R10 level. Alan Altmark Senior Managing z/VM and Linux Consultant IBM System Lab Services and Training ibm.com/systems/services/labservices office: 607.429.3323 mobile; 607.321.7556 alan_altm...@us.ibm.com IBM Endicott ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 ---------------------------------------------------------------------- For more information on Linux on System z, visit http://wiki.linuxvm.org/ This Email message and any attachment may contain information that is proprietary, legally privileged, confidential and/or subject to copyright belonging to Pepco Holdings, Inc. or its affiliates ("PHI"). This Email is intended solely for the use of the person(s) to which it is addressed. If you are not an intended recipient, or the employee or agent responsible for delivery of this Email to the intended recipient(s), you are hereby notified that any dissemination, distribution or copying of this Email is strictly prohibited. If you have received this message in error, please immediately notify the sender and permanently delete this Email and any copies. PHI policies expressly prohibit employees from making defamatory or offensive statements and infringing any copyright or any other legal right by Email communication. PHI will not accept any liability in respect of such communications. ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 ---------------------------------------------------------------------- For more information on Linux on System z, visit http://wiki.linuxvm.org/
