[Freeipa-users] Upgraded, login + password webui auth and ssh token manipulation gone
Tim Hildred
thildred at redhat.com
Fri Mar 8 04:47:02 UTC 2013
Hello,
I have been using IPA for authentication with a RHEV environment.
Quite a while ago, I got help from this list in making it so that my users could access the WebUI with their login and passwords, no Kerberos ticket required. I also had it working that when their passwords expired, they would ssh to the IPA server as themselves, get challenged for their current password, and then the opportunity to provide a new one.
The update to ipa-server 3.0.0-25.el6 means that I can no longer log into the WebUI with just a login and password (see attached screenshot) and that users who try and update expired passwords get:
You must change your password now and login again!
Changing password for user juwu.
Current Password:
New password:
Retype new password:
Password change failed. Server message: Password not changed.
Insufficient access to perform requested operation while trying to change password.
passwd: Authentication token manipulation error
Connection to dns1.ecs-cloud.lab.eng.bne.redhat.com closed.
Can anyone help me restore that functionality? Please?
Tim Hildred, RHCE
Content Author II - Engineering Content Services, Red Hat, Inc.
Brisbane, Australia
Email: thildred at redhat.com
Internal: 8588287
Mobile: +61 4 666 25242
IRC: thildred
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ipa_dialog.png
Type: image/png
Size: 14032 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20130307/2cf1a57f/attachment.png>
More information about the Freeipa-users
mailing list