Hi, we are running Samba 2.2.5 using LDAP und pam_ldap (pam_unix2 with
auth+account+password=use_ldap) as PDC out of the SuSE 8.1 distribution. It
runs very well: Login für UnixSamba ok, Passwort-Change for Samba via
smbpasswd Ok and we are able to manipulate the Linux Password in LDAP using
the GQ Client. The only thing that doesn't work is passwd itself:
venezuela:/home/tdm # passwd guest
Changing password for guest.
Enter login(LDAP) password:
New password:
Bad password: a palindrome
Re-enter new password:
LDAP password information update failed: Unknown error
Password changed
venezuela:/home/tdm #
and in /var/log/messages:
Jan 28 13:39:47 venezuela passwd[28505]: pam_ldap: ldap_modify_s
Insufficient access
Can you please help, because this is a very important issue for us! Thanks
in advance,
Thorsten.
Some conf-staff:
/etc/openldap/ldap.conf
host192.168.1.1
basedc=tdm-consult, dc=com
ssl no
# für nss_ldap
crypt des
# für pam_ldap
pam_filter objectclass=posixAccount
pam_login_attribute uid
pam_crypt local
pam_passwordcrypt
ldap_version3
/etc/openldap/slap.conf
suffix dc=tdm-consult,dc=com
rootdn cn=tdm,dc=tdm-consult,dc=com
rootpw {crypt}...
/etc/pam.d/passwd
auth required pam_unix2.sonullok
account requiredpam_unix2.so
password required pam_pwcheck.so nullok
password required pam_unix2.sonullok use_first_pass use_authtok
session requiredpam_unix2.so
/etc/security/pam_unix2
auth: use_ldap nullok
account:use_ldap
password: use_ldap nullok
session:none
