[Date Prev][Date Next]
Re: How To set things up to allow users to change their passwords
On Fri, 2009-12-04 at 11:55 -0500, Robert Heller wrote:
> I have Openldap set up on a CentOS 5 system (using the stock 2.3.43
> RPMS) and I want to allow users to change their passwords, but I am
> confused by the documentation (it has both too much and not enough
> information -- there don't appear to be simple HowTos for common setups).
> I am not sure what to put in /etc/openldap/slapd.conf (I think I need an
> ACL). I expect I need something in /etc/openldap/ldap.conf (or
> prossibly /etc/ldap.conf) to allow the authorization. This is on a LAN
> with diskless clients, behind a firewall, so I *probably* don't need to
> set up SSL and certs (but I am unsure of this as well).
I think the most secure (since you are not using SSL) and preferred way
is to use a small application for this. You can easily give the users a
web interface (written using php-ldap) to change their passwords or
phpldapadamin would do as well. But it's nicer to have your own