Hello everyone!
That would be great if the option to change password could work with
Microsoft Active Directory. I tried all tips that was suggested in the
last few mails, but none worked, I always end up with "Forbidden" and a
popup saying "Unhandled error response".
I guess that it is
On 01/31/2017 09:30 PM, Christoph Kreutzer
(kreutzer.christ...@gmail.com) wrote:
MJ, I don't know if that works in combination with SAML - since SOGo
shouldn't know the users password, it probably binds using the given
bindDN, which then would need the rights to change other users passwords.
Hi Ralf, hi MJ,
Thanks for the answers up to now!
According to the docs [1] there is the following option for LDAP user sources:
bindAsCurrentUser
If set to YES, SOGo will always keep binding to the LDAP server using the DN of
the currently authenticated user. If bindFields is set, bindDN and b
Hi,
> > we are looking for a password change machanism for openldap. Can you
> > please share your knowledge re. this?
> In active directory, end users are allowed to change their own passwords
> by default. This does require that the connection is make over ldapS.
>
another tool worth a look is
Hi
we are looking for a password change machanism for openldap. Can you
please share your knowledge re. this?
In active directory, end users are allowed to change their own passwords
by default. This does require that the connection is make over ldapS.
There is a tool called ldap-account-mana
Hi Christoph,
On Mon, Jan 30, 2017 at 03:51:27PM +0100 you wrote:
> haven't checked that, but when not using User binding but giving a bind dn,
> probably the bind User is used for this action. Probably you can check that
> in the AD logs.
> Also, you can probably give the user only the right t
Hi MJ,
haven't checked that, but when not using User binding but giving a bind dn,
probably the bind User is used for this action. Probably you can check that in
the AD logs.
Also, you can probably give the user only the right to modify the userPassword
attribute - at least in openldap that's p
Hi,
To support end-user password change using /SOGo, is it required that the
bindDN from sogo.conf has admin permissions in active directory?
Or are the changes done under the credentials of the currently /SOGo
logged on user, and without the need for admin permissions in AD?
MJ
--
users@so