[K12OSN] "insufficient access" to change password smb/ldap

cliebow at midmaine.com cliebow at midmaine.com
Mon Jan 8 23:49:15 UTC 2007


huck ldap.secret or pam_ldap.secret should contain the admin pw to your
ldap database as shown in slapd.conf..be sure you perms dont allow world
reead..depends on what distro how they should be exACTLY.LDAP RUNS AS ROOT
in older redhats..not sure about new..
ubuntu runs as ldap..chuck

> Jan  8 12:00:32 ltsp passwd: pam_ldap: could not open secret file
> /etc/ldap.secret (No such file or directory)
> Jan  8 12:00:34 ltsp passwd: pam_ldap: error trying to bind as user
> "uid=huckda,ou=Users,dc=hvja,dc=org" (Invalid             credentials)
> Jan  8 12:00:38 ltsp passwd: pam_ldap: ldap_modify_s Insufficient access
>
> what is expected in the /etc/ldap.secret file? and what 'credentials' is
> it looking for? other than my username and original password?
>
> --Huck
>
> Huck wrote:
>> [root at ltsp ~]# passwd huckda
>> Changing password for user huckda.
>> Enter login(LDAP) password:
>> LDAP Password incorrect: try again
>> Enter login(LDAP) password:
>> New password:
>> Re-enter new password:
>> LDAP password information update failed: Insufficient access
>>
>> passwd: Permission denied
>> [root at ltsp ~]#
>>
>>
>> there's the exact output...
>>
>> even attempting to change the passwd via root...
>>
>> --Huck
>>
>> _______________________________________________
>> K12OSN mailing list
>> K12OSN at redhat.com
>> https://www.redhat.com/mailman/listinfo/k12osn
>> For more info see <http://www.k12os.org>
>>
>
> _______________________________________________
> K12OSN mailing list
> K12OSN at redhat.com
> https://www.redhat.com/mailman/listinfo/k12osn
> For more info see <http://www.k12os.org>
>





More information about the K12OSN mailing list