Hello Quanah,
Regarding my architecture, we do have an IBM LinuxONE 2965L10 mainframe running RHEL 7, below is info from my LDAP server:
--- ec4397 Mon Sep 28 10:04:46 CDT 2020 pdprfsl4 /home/ec4397 --- $ hostnamectl Static hostname: pdprfsl4.sldc.sbc.com Icon name: computer-vm Chassis: vm Machine ID: 8c40a74b59284ef18968501372a64d4a Boot ID: 2935e9ac179c49efad5c3d106c7ab3ef Virtualization: kvm Operating System: Red Hat Enterprise Linux CPE OS Name: cpe:/o:redhat:enterprise_linux:7.9:beta:server Kernel: Linux 4.14.0-115.21.2.el7a.s390x Architecture: s390x --- ec4397 Mon Sep 28 10:04:46 CDT 2020 pdprfsl4 /home/ec4397 --- $
Any help or suggestions would be greatly appreciated.
Thanks, Ed
-----Original Message----- From: Quanah Gibson-Mount quanah@symas.com Sent: Tuesday, September 22, 2020 4:18 PM To: CLARKE, ED C ec4397@att.com; openldap-technical@openldap.org Subject: RE: Issues with resetting user password
--On Monday, September 21, 2020 11:40 PM +0000 "CLARKE, ED C" ec4397@att.com wrote:
Hello Quanah,
I am using OpenLDAP, on an IBM LinuxONE server, IBM just helped with the setup. I also was able to test the below on my other ldap server & it performed as expected & changed the password.
Ok, thanks.
dn:uid=foxdiv,ou=People,dc=att,dc=com
So this shows the LDAP password change for this user was successful in the LDAP server on pdprfdl4.dadc.sbc.com
dn:uid=foxdiv,ou=People,dc=att,dc=com
So this shows the LDAP password change for this user was successful in the LDAP server on pdprfsl4.sldc.sbc.com
This would show that the LDAP servers are working correctly, and password modifications to each LDAP server is working correctly. The issue then between the OS and the integration software being used (SSSD etc).
As an aside, I would note that OpenLDAP 2.4.44 is extremely old. I do see that you're using an S390 mainframe, so I'm guessing your options are currently limited in regards to upgrading to a current release. If it ever becomes an issue (i.e., if your setup is doing replication which I would strongly advise against doing with 2.4.44), Symas could provide assistance in this area. Our CTO (who is also the chief architect of the OpenLDAP project) did the original S390 port of OpenLDAP, so we're quite familiar and can provide support for such a build.
Regards, Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: <https://urldefense.com/v3/__http://www.symas.com__;!!BhdT!3JCRikRm0DMkYlgYA2... >