[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: forced password change + update: blocked by ppolicy

On Fri, Jun 02, 2006 at 06:04:36PM -0300, Andreas Hasenack wrote:
> If yes, how is this possible considering that pam_ldap uses the
> ldap_extended_operation_s() for the EXOP and later on ldap_modify_s()? These
> are synchronous operations, right? So how come the second operation be
> initiated before the first one finished? I don't think pam_ldap is
> multi-threaded.
> Or is the reason for the failure something else?

I managed to reproduce this using a python script: in the same connection, I
change the password using EXOP and then try to update an attribute. I get the
same access denied error, so I think it's a bug in openldap. I opened an ITS
for it.