RE: Possible or not possible?

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: "Riha, Marek" <Marek.Riha [at] t-systems.com>
To: Grégory Bellanger <gregbel [at] hotmail.com>, "nss-pam-ldapd-users [at] lists.arthurdejong.org" <nss-pam-ldapd-users [at] lists.arthurdejong.org>
Subject: RE: Possible or not possible?
Date: Tue, 13 Sep 2016 21:07:44 +0000

Hi all,

We have similar problem problem with redhat7 and oracle7 clients, we already solved it for rhel6 and oracle6 clients ,where our ODSEE ldap server doesn’t support extension: oid=1.3.6.1.4.1.4203.1.11.1,cn=features,cn=config

Therefore we tried to obey this extension and found solution with /etc/pam_ldap.conf for rhel6 and oracle6, but this doesn’t work on rhel7 and oracle7, therefore we opened support cases to rhel and oracle

BR,

Marek

From: nss-pam-ldapd-users [mailto:nss-pam-ldapd-users-bounces+marek.riha=t-systems.sk@lists.arthurdejong.org] On Behalf Of Grégory Bellanger
Sent: 13. septembra 2016 20:36
To: nss-pam-ldapd-users@lists.arthurdejong.org
Subject: Possible or not possible?

Hi,

I'm search since 2 weeks about "how to change my active directory password from my centos 7". It's possible or not?

getent passwd, getent group and authentification it's working with ldaps but change password doesn't work. Below my log

-- L'unitÃ© (unit) nslcd.service a terminÃ© son dÃ©marrage, avec le rÃ©sultat done.

sept. 07 18:10:32 centos7 passwd[9230]: pam_unix(passwd:chauthtok): user "myuser" does not exist in /etc/passwd

sept. 07 18:10:38 centos7 nslcd[9223]: [495cff] <authc="myuser"> CN=Lastname Name,OU=City,OU=Users,DC=ad,DC=local: pwdLastSet: password changed in the future

sept. 07 18:10:48 centos7 passwd[9230]: pam_pwquality(passwd:chauthtok): pam_get_authtok_verify returned error: Ãchec du contrÃ´le prÃ©liminaire par le service de mot de passe

sept. 07 18:12:40 centos7 passwd[9245]: pam_unix(passwd:chauthtok): user "myuser" does not exist in /etc/passwd

sept. 07 18:12:44 centos7 nslcd[9223]: [b141f2] <authc="myuser"> CN=Lastname Name,OU=City,OU=Users,DC=ad,DC=local: pwdLastSet: password changed in the future

sept. 07 18:12:49 centos7 passwd[9245]: pam_unix(passwd:chauthtok): user "myuser" does not exist in /etc/passwd

sept. 07 18:12:49 centos7 nslcd[9223]: [45e146] <pwmod="myuser"> ldap_passwd_s() without old password failed: Protocol error: 0000203D: LdapErr: DSID-0C090D9A, comment: Unknown extended request OID, data 0, v1db1

sept. 07 18:12:49 centos7 nslcd[9223]: [45e146] <pwmod="myuser"> ldap_passwd_s() with old password failed: Protocol error: 0000203D: LdapErr: DSID-0C090D9A, comment: Unknown extended request OID, data 0, v1db1

sept. 07 18:12:49 centos7 passwd[9245]: pam_ldap(passwd:chauthtok): password change failed: password change failed: Protocol error; user=myuser

sept. 07 18:13:33 centos7 passwd[9246]: pam_unix(passwd:chauthtok): user "myuser" does not exist in /etc/passwd

sept. 07 18:13:37 centos7 nslcd[9223]: [16e9e8] <authc="myuser"> CN=Lastname Name,OU=City,OU=Users,DC=ad,DC=local: pwdLastSet: password changed in the future

sept. 07 18:13:45 centos7 passwd[9246]: pam_pwquality(passwd:chauthtok): pam_get_authtok_verify returned error: Ãchec du contrÃ´le prÃ©liminaire par le service de mot de passe

sept. 07 18:14:51 centos7 passwd[9311]: pam_unix(passwd:chauthtok): user "myuser" does not exist in /etc/passwd

sept. 07 18:15:17 centos7 passwd[9317]: pam_unix(passwd:chauthtok): user "myuser" does not exist in /etc/passwd

THank you by advance.

Bye

-- 
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
https://lists.arthurdejong.org/nss-pam-ldapd-users/

Possible or not possible?, Grégory Bellanger
- RE: Possible or not possible?, Riha, Marek

Prev by Date: Possible or not possible?
Next by Date: RE: Possible or not possible?
Previous by thread: Possible or not possible?
Next by thread: RE: Possible or not possible?