Le 22/11/2022 à 11:52, Ian Porter a écrit :

Hi

I have tried to change a users password either by

ldappasswd -H ldapi:/// -x -D "ADMIN ACCOUNT" -W -S "uid=USER,ou=USER,o=ORG"

or via a ldif file with ldapmodify

ldapmodify -H ldap:// -x -D "ADMIN ACCOUNT" -W -f ./password.ldif

dn: uid=USER,ou=USER,o=ORG

changetype: modify
replace: userPassword
userPassword: {SSHA}SSHAPASSWORD HERE

where the ADMIN ACCOUNT / USER etc have been replaced with the ldap cn=manager etc, but every time I try to confirm that the password has been updated via

ldapwhoami -x -W -D "uid=USER,ou=USER,o=ORG" -H ldapi:///

Enter LDAP Password:
ldap_bind: Invalid credentials (49)

I keep on getting the ldap_bind invalid credentials, I have tested the userPassword attribute via the apache directory studio and verified the userPassword is correct.

Any advice, please

Why are you using ldapi:// with ldapwhoami and ldap:// with ldapmodify ?

Did you check in your ACL that access to userPassword attribute is allowed to authenticate users?

-- 
Clément Oudot | Identity Solutions Manager

clement.oudot@worteks.com

Worteks | https://www.worteks.com