On 4/26/07, Richard Megginson <rmeggins(a)redhat.com> wrote:
Chris Halstead wrote:
> Richard Megginson wrote:
>> So, both old and new password work everywhere? pam too? Have you
>> tried the command line ldapsearch?
>
> Yep - PAM, httpd auth, FDS console login, passthru auth from
> LDAP-enabled apps all work with both old and new, but *only* when I've
> changed the password through the console while logged in as myself.
> If I change my password with passwd on a PAM-enabled system, or change
> it in the console logged in as an admin user, only the new one works.
So the following both work and produce the exact same result?
ldapsearch -x -h ldaphost -p ldapport -D
"uid=chalstead,ou=people,dc=yourdomain,dc=com" -w oldpassword -b
ou=people,dc=yourdomain,dc=com "(uid=chalstead)"
and
ldapsearch -x -h ldaphost -p ldapport -D
"uid=chalstead,ou=people,dc=yourdomain,dc=com" -w newpassword -b
ou=people,dc=yourdomain,dc=com "(uid=chalstead)"
?
Would nscd help cause this?
--
Stephen J Smoogen. -- CSIRT/Linux System Administrator
How far that little candle throws his beams! So shines a good deed
in a naughty world. = Shakespeare. "The Merchant of Venice"