[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: openldap pwdReset

On Wednesday, 23 June 2010 14:39:03 Allgood, John wrote:
> Hey All
> I have a question for you all. I am using openldap 2.4.31 on Centos 5.5 and
>  using the ppolicy overlay. I have also compiled the smbk5 module to update
>  the samba attr when the user password is updated. My problem is to change
>  the password and have the samba password update I have to use ldappasswrd
>  which works great. If I force a pwdReset and login via gdm the password
>  program take  over and sets the posix password but this does not change
>  the samba side nor does it adhere to the ppolicy.

I assume that by "adhere to the policy", you mean policy settings pertaining 
to new password quality (e.g. minimum length)?

>  I am thinking this may
>  something related to /etc/pamd/system-auth file but not sure. Any feedback
>  would be appreciated.

In /etc/ldap.conf, set:

pam_password exop