pam_ldap LDAP_EXOP_X_MODIFY_PASSWD

Asked by Benjamin Fleckenstein on 2008-08-01

Hi,

I'm trying to setup an OpenLdap Server using the smbk5pwd Overlay. This overlay changes the samba Passwords inside the Ldap, whenever a user changes the "userPassword" setting.

 At present this seems to work if the user uses ldappasswd or changes his password via Windows.

Using passwd this doesn't work. passwd changes (in combination with pam_ldap) the userPassword inside the ldap, but it seems that it doesn't use LDAP_EXOP_X_MODIFY_PASSWD for this.

So the smbk5pwd isn't triggerd by passwd and the Samba passwords don't get changed when using passwd or the GDM/Gnome Tools.

I already had a look at the pam_ldap sources and in pam_ldap.h the LDAP_EXOP_X_MODIFY_PASSWD is mentioned. Unfortunatelly my C-Skills are not good enough to find out wether LDAP_EXOP_X_MODIFY_PASSWD is used or not.

Is there a way to make pam_ldap use LDAP_EXOP_X_MODIFY_PASSWD?

Regards
Ben

Question information

Language:
English Edit question
Status:
Solved
For:
Ubuntu shadow Edit question
Assignee:
No assignee Edit question
Solved by:
Benjamin Fleckenstein
Solved:
2008-08-01
Last query:
2008-08-01
Last reply:

I think I just solved the problem. Add the following to /etc/ldap.conf

pam password exop

and passwd will trigger smbk5pwd.

Sorry for the noise!