On Wed, 2002-12-04 at 21:14, Gordon Messmer wrote:
> On Mon, 2002-11-25 at 16:47, Patrick Nelson wrote:
> >
> > What is the best way (process) to change ldap passwords?
>
> Have you tried "passwd"? I'd expect PAM to be able to manage to change
> a password in the directory.
I don't know if the passwd program is the solution I frankly don't know
if it would work although its worth a try, instead this works pretty
well.
ldappasswd -s <newpassword> -D
"uid=<loginname>,ou=People,dc=subdomain,dc=domain,dc=ca"
-w <oldpassword> -x -h <your ldap server if not localhost>
This is just an example of what works obviously a wrapper script will
be required so that we can do some stuff like type passwdldap and make
it do the above things. Remember that if you are using OpenLDAP setting
up the correct ACLs is important, like letting the user edit the
password field and also make sure that you know the password hashing
scheme you are using such as MD5, SSHA etc I guess MD5 is prefered by
RH. By no means is it a replacement or a tool for changing passwords
according to the OpenLDAP crowd but I think that you it should be ??? We
need some too for the users maybe someone can write one in say C when
they have time (hint hint) :=)
HTH and Cheers,
Aly.
--
Aly S.P Dharshi
[EMAIL PROTECTED]
Student and System Administrator ORS Servers
"A good speech is like a good dress
that's short enough to be interesting
and long enough to cover the subject"
--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe
https://listman.redhat.com/mailman/listinfo/redhat-list
