I feel probably I haven’t edit properly the 3 red/bold coded variables below
User “abazoli” is the samid of the user trying to change its password (see attachment) 1st attempt) in the LOGIN field he just places abazoli 2nd attempt) in the LOGIN filed he just places [email protected]<mailto:[email protected]> Both trials end up with LOGIN OR PASSWORD INCORRECT in the GUI splash screen and with this error in the error_log file. 1) [error] [client 192.168.0.165] LDAP - User abazoli not found, referer: http://ssp.peerius.local/ 2) [error] [client 192.168.0.165] LDAP - User [email protected] not found, referer: http://ssp.peerius.local/ $ldap_binddn refers to an administrator account with samid abazoliadmin and $ldap_bindpw refers to this admin account password. I gather those credentials are used when $who_change_password is set to manager. Correct? All the users meant to change their password are part of OU=London at the moment. We also have another OU , which has other users in it but did not get to that stage yet #============================================================================== # Configuration #============================================================================== # LDAP $ldap_url = "ldap://192.168.0.101:389";; $ldap_binddn = "cn=Alessandro Bazoli - Admin,ou=London,dc=peerius,dc=local"; $ldap_bindpw = "password for user above"; $ldap_base = "ou=London,dc=peerius,dc=local"; $ldap_login_attribute = "uid"; $ldap_fullname_attribute = "cn"; $ldap_filter = "(&(objectClass=person)($ldap_login_attribute={login}))"; ## other options I think are not the issue here # Active Directory mode $ad_mode = true; $shadow_options['update_shadowLastChange'] = false; # Hash mechanism for password: $hash = "clear"; # Who changes the password? $who_change_password = "manager"; -----Original Message----- From: Clément OUDOT [mailto:[email protected]] Sent: 15 April 2015 09:25 To: Alessandro Bazoli Cc: [email protected] Subject: Re: [Ltb-users] ldap_bind : unbale to bind to server 2015-04-14 18:24 GMT+02:00 Alessandro Bazoli <[email protected]<mailto:[email protected]>>: > I use dsquery on DC to get proper BIND DN strings and got over that issue. > Now connects ok, but when trying to change password through the GUI I get > this error message in the log : > > [Tue Apr 14 17:18:46 2015] [error] [client 192.168.0.165] PHP Warning: > ldap_get_dn() expects parameter 2 to be resource, boolean given in > /usr/share/self-service-password/pages/change.php on line 112, referer: > http://192.168.0.207/ > Seems the user account is not found. Clément.
_______________________________________________ ltb-users mailing list [email protected] http://lists.ltb-project.org/listinfo/ltb-users
