R: R: pwdReset problem in CentOS 7
[
Date Prev][
Date Next]
[
Thread Prev][
Thread Next]
R: R: pwdReset problem in CentOS 7
- From: <nsspamldapd12 [at] iotti.biz>
- To: "'Arthur de Jong'" <arthur [at] arthurdejong.org>, <nss-pam-ldapd-users [at] lists.arthurdejong.org>
- Subject: R: R: pwdReset problem in CentOS 7
- Date: Sun, 13 Jan 2019 23:30:44 +0100
> > nslcd: [e45d32] <authc="lux"> DEBUG:
> > ldap_sasl_bind("uid=lux,ou=Tecnici,ou=People,dc=test,dc=it","***")
> > (uri="ldap://127.0.0.1/";) (ppolicy=yes)
> > nslcd: [e45d32] <authc="lux"> DEBUG: got
> > LDAP_CONTROL_PASSWORDPOLICYRESPONSE (Password must be
> changed)
> > nslcd: [e45d32] <authc="lux"> DEBUG:
> > myldap_search(base="uid=lux,ou=Tecnici,ou=People,dc=test,dc=it",
> > filter="(objectClass=*)")
> > nslcd: [e45d32] <authc="lux"> ldap_result() failed: Insufficient
> > access: Operations are restricted to
> > bind/unbind/abandon/StartTLS/modify password
>
> The problem here may be that the policy does not provide any grace logins
> left but I'm not 100% sure. It could be that the PAM stack does not provide
> the correct answers. To get more information add the debug option to the
> pam_ldap.so lines in your PAM stack (at least for auth and account parts).
Hi Arthur,
the problem vanished. The only thing I did was to replace the nslcd binary with
one I recompiled wirh debug messages wide spread. I'm sorry, if/when I find the
real thig that did correct the problem, I'll post about it here. Disappointing,
but I double checked all the configs involved.
Now I have another little problem I write in a separate message.
Thank you, best regards,
Luigi
--
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
https://lists.arthurdejong.org/nss-pam-ldapd-users/
