Dear ones, Out of curiosity : does any one know how many people are actually on this list? It’s kinda quiet out there, any one using this tool?
I have gotten the password to change, if I use: $who_change_password = “manager" And include id and password for the openldap admin. I was hoping I could use “user”. I am trying to setup ldaps or starttls, so I could run securely. I have an /etc/ldap.conf with a tlscacert entry, well that doesn’t work… I get a 14090086:SASL error. Do I need a place in the ltb password conf/config.inc.php file with a pointer to the cert? Sincerely, tob From: john Tobin <[email protected]<mailto:[email protected]>> Date: Friday, June 30, 2017 at 18:40 To: "[email protected]<mailto:[email protected]>" <[email protected]<mailto:[email protected]>>, John Tobin <[email protected]<mailto:[email protected]>> Subject: ldap-tool-box help if someone has it[??] Dear ldap-tool-box people, I have installed the self-service-ldap-password tool. nice package. from my machine I can search ldap: nightair:/home/jctobin/public_html/conf # ldapsearch -h a-nightmare.dark.net<http://a-nightmare.dark.net> -x -b dc=dark,dc=net uid=passwdtst1 # extended LDIF # # LDAPv3 # base <dc=dark,dc=net> with scope subtree # filter: uid=passwdtst1 # requesting: ALL # # passwdtst1, people, dark.net<http://dark.net> dn: uid=passwdtst1,ou=people,dc=dark,dc=net uid: passwdtst1 cn: password xxxxxxxx objectClass: account objectClass: posixAccount objectClass: top objectClass: shadowAccount objectClass: sambaSamAccount loginShell: /bin/ksh uidNumber: 5xxx gidNumber: 100 homeDirectory: /home/passwdtst1 when I use the web interface you have constructed, I get: Login or password incorrect and the error log gets: [Fri Jun 30 17:40:20.538988 2017] [php7:notice] [pid 7856] [client 10.99.7.100:36350<http://10.99.7.100:36350>] LDAP - User tobi1 not found, referer: http://nightair.dark.net/~jctobin/index.php [Fri Jun 30 17:49:24.678867 2017] [php7:warn] [pid 7857] [client 10.99.7.100:36440<http://10.99.7.100:36440>] PHP Warning: ldap_get_dn() expects parameter 2 to be resource, boolean given in /home/jctobin/public_html/pages/change.php on line 119, referer: http://nightair.dark.net/~jctobin/index.php [Fri Jun 30 17:49:24.678951 2017] [php7:notice] [pid 7857] [client 10.99.7.100:36440<http://10.99.7.100:36440>] LDAP - User passwdtst1 not found, referer: http://nightair.dark.net/~jctobin/index.php /conf/config.inc.conf #============================================================================== # Configuration #============================================================================== # LDAP $ldap_url = "ldap://a-nightmare.dark.net<http://a-nightmare.dark.net>"; $ldap_starttls = false; $ldap_binddn = "cn=administrator,dc=dark,dc=net"; $ldap_bindpw = "xxxxxxxx"; $ldap_base = "dc=dark,dc=net"; $ldap_login_attribute = "uid"; $ldap_fullname_attribute = "cn"; $ldap_filter = "(&(objectClass=person)($ldap_login_attribute={login}))"; # Active Directory mode # true: use unicodePwd as password field # false: LDAPv3 standard behavior $ad_mode = false; # Force account unlock when password is changed $ad_options['force_unlock'] = false; # Force user change password at next login $ad_options['force_pwd_change'] = false; # Allow user with expired password to change password $ad_options['change_expired_password'] = false; # Samba mode # true: update sambaNTpassword and sambaPwdLastSet attributes too # false: just update the password $samba_mode = false; a-nightmare runs openldap a-nightmare:/etc # /usr/lib/openldap/slapd -V @(#) $OpenLDAP: slapd 2.4.39 $ [email protected]<mailto:[email protected]> suggestions as to how I can debug this.... client is opensuse tumbleweed [linux uname -a Linux nightair 4.9.10-1-default #1 SMP PREEMPT Thu Feb 16 08:36:29 UTC 2017 (ffeeef5) x86_64 x86_64 x86_64 GNU/Linux thanks in advance, respond to [email protected]<mailto:[email protected]> and thanks for the package. I did join your user group, but don't know if I have been officially added yet.... _______________________________________________ ltb-users mailing list [email protected] https://lists.ltb-project.org/cgi-bin/mailman/listinfo/ltb-users
