Here is the output from ldapwhoami
ldapwhoami -x -h ldap1.example.com -D "uid=user1,ou=users,employees,ou=users,dc=example,dc=com" -w tt#12345 ldap_bind: Invalid DN syntax (34) additional info: invalid DN
But if I do an ldapsearch using the manager account all info show up on this user.
-----Original Message----- From: Pierangelo Masarati [mailto:ando@sys-net.it] Sent: Thursday, August 09, 2007 3:15 AM To: Rick Tautin Cc: openldap-software@openldap.org Subject: Re: Problems changing passwords
Rick Tautin wrote:
I am unable to change users passwords as themselves. When a user
tries
to change their password, they get and error invalid credentials(49).
I
have tried every option of changing the acl's to allow them to bind
and
change it but nothing has worked. Any help would be appreciated.
Here
is my slapd.conf and the command I am trying to use to change the password.
ldappasswd -x -D "uid=user1,ou=users,ou=employees,ou=users,dc=example,dc=com" -w
tt#12345
-s new#1234 uid=user1,ou=users,ou=employees,ou=users,dc=example,dc=com
The fact that you get 49 (invalid credentials) clearly indicates that the command is failing authentication, so you're not even getting to password change. You should check first that you can bind with that identity, for example using ldapwhoami. Moreover, invalid credentials i a rather generic error, it doesn't simply mean the password is wrong, so you should carefully inspect server logs to see where the problem is actually occurring.
p.
Ing. Pierangelo Masarati OpenLDAP Core Team
SysNet s.r.l. via Dossi, 8 - 27100 Pavia - ITALIA http://www.sys-net.it --------------------------------------- Office: +39 02 23998309 Mobile: +39 333 4963172 Email: pierangelo.masarati@sys-net.it ---------------------------------------