[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldappasswd not changing old userPassword entry

To: <fstahl@xantury.com>
Subject: Re: ldappasswd not changing old userPassword entry
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Thu, 27 Feb 2003 08:24:32 -0800
Cc: <openldap-software@OpenLDAP.org>
In-reply-to: <002001c2ddab$b284f800$2800a8c0@master>

At 07:28 AM 2/26/2003, Florian Stahl wrote:
>Hi all,
>
>ldappasswd -h hostname -x -v -D "cn=manager,dc=checkerei,dc=net" -W -S
>"cn=florian,ou=people,dc=checkerei,dc=net"
>
>works fine and I get a SSHA encrypted userPassword attribute for the above
>cn
>
>but when I try to change the old password to a new one with
>
>ldappasswd -h hostname -x -v -D "cn=manager,dc=checkerei,dc=net" -W -A -S
>"cn=florian,ou=people,dc=checkerei,dc=net"
>
>or
>
>ldappasswd -h hostname -x -v -D
>"cn=florian,ou=people,dc=checkerei,dc=net" -W -A -S
>"cn=florian,ou=people,dc=checkerei,dc=net"
>
>after entering the old passwd and new passwd twice plus the bind passwd for
>cn=manager
>I get an ignorant "DSA is unwilling to perform - use bind to verify old
>password"

It means "try again without providing the old password as part
of the password modify operation".  That is, don't specify
a -A (or -a) option.

(These options exist to interoperate with non-OpenLDAP servers
which demand the old password even though the user has already
provided it using the bind operation.)

>I am pretty new to OpenLDAP, so I might be doing complete bogus.
>
>any hints would be highly appreciated
>
>
>kind regardes
>
>florian
>(fstahl@xantury.com)

References:
- ldappasswd not changing old userPassword entry
  - From: "Florian Stahl" <fstahl@xantury.com>

Prev by Date: Re: ldapadd + Greek Characters -HELP
Next by Date: Writing operations are very slow
Index(es):
- Chronological
- Thread