Re: Allow users to change ldap password with passwd

Real, Elizabeth (392K) wrote:

I replaced ou with cn, tried loading the ldif and got this message:

# ldapadd -Y EXTERNAL -H ldapi:/// -D "cn=config" -f passwordPolicy.ldif SASL/EXTERNAL authentication started SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth SASL SSF: 0 adding new entry "cn=policies,dc=*****,dc=*****" ldap_add: Insufficient access (50) additional info: no write access to parent

I guess you want to use another bind-DN with -D when writing to your normal DB backend / naming context dc=*****,dc=*****.

And defining -Y and -D together does not make sense. Please consult the man page and look at various bind methods more closely.

Ciao, Michael.