[DIRSERVER-2131] cannot log in with ads-pwdmustchange true - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Open
Priority: Major
Resolution: Unresolved
Affects Version/s: 2.0.0-M21
Fix Version/s: None
Component/s: ppolicy
Labels:
None
Environment:
centos 7.

Description

If i modify the authentication policy to set ads-pwdmustchange to TRUE, when i log in, i get: -

provisioning:root *#ssh user2@192.168.56.164
Authorized users only. All activity may be monitored and reported.
user2@192.168.56.164's password:
Password expired. Change your password now.
Last login: Mon Mar  7 15:46:02 2016 from provisioning
Authorized users only. All activity may be monitored and reported.
WARNING: Your password has expired.
You must change your password now and login again!
Changing password for user user2.
Current Password:
New password:
Retype new password:
Password change failed. Server message: Cannot find an entry for DN uid=user2,ou=users,dc=example,dc=com
passwd: Authentication token manipulation error
Connection to 192.168.56.164 closed.

and this appears in the apacheds.log: -
[15:46:33] ERROR [org.apache.directory.server.ldap.handlers.extended.PwdModifyHandler] - Cannot find an entry for DN uid=user2,ou=users,dc=example,dc=com, exception : password needs to be reset before performing this operation

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

DIRSERVER-2131.patch
11/Mar/16 16:25
10 kB
Peter Jamieson

Activity

People

Assignee:: Unassigned

Reporter:: Peter Jamieson

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 07/Mar/16 15:47

Updated:: 30/Jun/19 04:59