I'm running SSSD 1.8.6-0ubuntu0.3 on Ubuntu 12.04 and I've hit this bug https://bugs.launchpad.net/debian/+source/sssd/+bug/1415545, basically if you set ldap_pwd_policy=shadow and you don't have the ppolicy overlay on your ldap server it breaks changing passwords.

I'm just wondering if this is fixed in a later version, in which chase I"ll have to backport it / patch 1.8.6 or if anyone knows are work around for the problem.