It might be of value to note that the "try_authtok" option for the pam_ldap.so library ist neither documented nor used, producing in the /var/log/auth.log the following line : "illegal option try_authtok". Since illegal options are ignored, it produces exactly the same behaviour as simply removing use_authtok altogether.
Because of this i'd recommend changing the title of the bug to something like : "cannot change user password on a LDAP client when the option use_authtok is used with pam_ldap.so". -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to libpam-ldap in Ubuntu. https://bugs.launchpad.net/bugs/329067 Title: Cannot change password on ldap client, need to have 'try_authtok' in the pam config or libpam-cracklib installed To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libpam-ldap/+bug/329067/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs