It would help if you would attach the ppolicy that this entry uses in order to make sure it is configured correctly...
On Thu, Jun 24, 2010 at 7:56 AM, Allgood, John <[email protected]> wrote: > Yes I set that yesterday but now my password history is not working. It > seems when I get one thing working something else breaks. Any ideas on the > password history? > > John Allgood > Senior Systems Administrator > OHL Transportation Services > 2251 Jesse Jewell Pky. NE > Gainesville, GA 30507 > tel: (678) 989-3051 fax: (770) 531-7878 > > [email protected] > www.ohl.com > > > -----Original Message----- > > From: SATOH Fumiyasu [mailto:[email protected]] > > Sent: Wednesday, June 23, 2010 8:23 PM > > To: Allgood, John > > Cc: '[email protected]' > > Subject: Re: openldap pwdReset > > > > Hi, > > > > At Wed, 23 Jun 2010 08:39:03 -0500, > > Allgood, John wrote: > > > I have a question for you all. I am using openldap 2.4.31 on Centos > > 5.5 and using the ppolicy overlay. I have also compiled the smbk5 > > module to update the samba attr when the user password is updated. My > > problem is to change the password and have the samba password update I > > have to use ldappasswrd which works great. If I force a pwdReset and > > login via gdm the password program take over and sets the posix > > password but this does not change the samba side nor does it adhere to > > the ppolicy. I am thinking this may something related to > > /etc/pamd/system-auth file but not sure. Any feedback would be > > appreciated. > > > > If you are using PADL pam_ldap.so (included in nss_ldap package), > > you must set "pam_password exop" in your /etc/ldap.conf. > > > > -- > > -- Name: SATOH Fumiyasu (fumiyas @ osstech co jp) > > -- Business Home: http://www.OSSTech.co.jp/ > > -- Personal Home: http://www.SFO.jp/blog/ > > ______________________________________________________ > > This e-mail transmission may contain information that is proprietary, > privileged and/or confidential and is intended exclusively for the person(s) > to whom it is addressed. Any use, copying, retention or disclosure by any > person other than the intended recipient or the intended recipient's > designees is strictly prohibited. If you are not the intended recipient or > their designee, please notify the sender immediately by return e-mail and > delete all copies. > -- Adam Leach BS Computer/Electrical Engineering West Virginia University Systems Administrator - Raytheon (304)677-4455
