Public bug reported: I'm testing sssd in ubuntu 12.04 precise (i understand its still alpha) in preperation for its release soon. I currently have sssd configured for our AD 2008 domain. I can
Log in Get a tgt Change Password But, when I set "change password on next login" within active directory, i got "Invalid password, please try again". Unchecking the box in AD requiring password change, using the same password again I am allowed to login to the account. I haven't figured out the correct sssd.conf settings to allow me login to an account that is requiring password change. I was hoping to get some help with this [sssd] config_file_version = 2 services = nss, pam domains = DOMAIN try_inotify = true debug_level = 10 [nss] filter_groups = root, jason filter_users = root, jason [pam] [domain/DOMAIN] min_id = 1000 enumerate = true id_provider = ldap auth_provider = krb5 cache_credentials = true chpass_provider = krb5 ldap_uri = ldap://DOMAIN.com ldap_search_base = ou=accountsdc=DOMAIN,dc=com ldap_schema = rfc2307bis ldap_user_object_class = user ldap_group_object_class = top ldap_krb5_ticket_lifetime = 86400 ldap_user_home_directory = unixHomeDirectory ldap_user_principal = userPrincipalName ldap_tls_reqcert = allow ldap_user_name = sAMAccountName ldap_user_fullname = sAMAccountName ldap_krb5_init_creds = true ldap_force_upper_case_realm = true ldap_sasl_mech = GSSAPI ldap_sasl_canonicalize = true ldap_sasl_authid = VUT-PRECISE01$ krb5_server = DOMAIN.com krb5_realm = DOMAIN.COM krb5_kpasswd = DOMAIN.com krb5_ccachedir = /tmp krb5_ccname_template = FILE:krb5cc_%U_XXXXXX krb5_keytab = /etc/krb5.keytab krb5_renewable_lifetime = 24h krb5_lifetime = 24h krb5_renew_interval = 10s krb5_use_fast = try Cheers! Jason ** Affects: sssd (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/915386 Title: SSSD/AD 2008 and Password Change To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/sssd/+bug/915386/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs