Hello Clement,
Below is my results from the ldappasswd command, it ran fine, but when I tried the new password, I could not login, I tried the old password & I was able to log in:
----- root pdprfsl4.sldc.sbc.com /root ----- $ ldappasswd -H ldapi:/// -x -D "cn=Manager,dc=att,dc=com" -W -S uid=foxdiv,ou=People,dc=att,dc=com New password: Re-enter new password: Enter LDAP Password: ----- root pdprfsl4.sldc.sbc.com /root ----- $ slapcat -n 0 | grep olcRootDN olcRootDN: cn=Manager,dc=att,dc=com ----- root pdprfsl4.sldc.sbc.com /root ----- $ ldapsearch -b "cn=config" SASL/GSSAPI authentication started ldap_sasl_interactive_bind_s: Local error (-2) additional info: SASL(-1): generic failure: GSSAPI Error: Unspecified GSS failure. Minor code may provide more information (No Kerberos credentials available (default cache: KEYRING:persistent:0)) ----- root pdprfsl4.sldc.sbc.com /root -----
Thanks, Ed
-----Original Message----- From: Quanah Gibson-Mount quanah@symas.com Sent: Friday, September 18, 2020 1:39 PM To: CLARKE, ED C ec4397@att.com; Clément OUDOT clement.oudot@worteks.com; openldap-technical@openldap.org Subject: RE: Issues with resetting user password
--On Friday, September 18, 2020 7:16 PM +0000 "CLARKE, ED C" ec4397@att.com wrote:
Hello Clement,
What is strange, is I do not receive any error, the script runs and shows the below:
We've no idea what your script is doing, so that's not particularly helpful. You need to show the output when running the correct sequence of commands.
The FIRST command should be an appropriate 'ldappasswd' operation to change the user password.
The SECOND command should be an appropiate 'ldapmodify' operation to add pwdReset: TRUE to the user entry.
You should run these on the command line so you can gather any error(s) returned by the utilities.
Once that is working, then you can move on to fixing your script to operate correctly.
Regards, Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: <https://urldefense.proofpoint.com/v2/url?u=http-3A__www.symas.com&d=DwIC... >