> On Dec 12, 2013, at 12:49 AM, Predrag Punosevac <[email protected]> wrote:
>
> I just finished first of several LDAP deployment using LDAP server from
> the base. So far works like a charm. One quick question. I know that
> LDAP from the base is pretty bare bone but I was wondering it it
> supports user password change. My clients are by the way RedHat machines
> using SSSD instead of PAM for directory services.
The base ldapd doesn't implement the RFC 3062 password modify extended
operation. It appears that SSSD relies on that extended operation to work.
It seems like it would be MOSTLY straightforward to implement... Except for
users with {BSDAUTH} values in userPassword.
--
Matthew Weigel
