Hello Quanah,
Regarding my architecture, we do have an IBM LinuxONE 2965L10 mainframe running
RHEL 7, below is info from my LDAP server:
--- ec4397 Mon Sep 28 10:04:46 CDT 2020 pdprfsl4 /home/ec4397 ---
$ hostnamectl
Static hostname: pdprfsl4.sldc.sbc.com
Icon name: computer-vm
Chassis: vm
Machine ID: 8c40a74b59284ef18968501372a64d4a
Boot ID: 2935e9ac179c49efad5c3d106c7ab3ef
Virtualization: kvm
Operating System: Red Hat Enterprise Linux
CPE OS Name: cpe:/o:redhat:enterprise_linux:7.9:beta:server
Kernel: Linux 4.14.0-115.21.2.el7a.s390x
Architecture: s390x
--- ec4397 Mon Sep 28 10:04:46 CDT 2020 pdprfsl4 /home/ec4397 ---
$
Any help or suggestions would be greatly appreciated.
Thanks,
Ed
-----Original Message-----
From: Quanah Gibson-Mount <[email protected]>
Sent: Tuesday, September 22, 2020 4:18 PM
To: CLARKE, ED C <[email protected]>; [email protected]
Subject: RE: Issues with resetting user password
--On Monday, September 21, 2020 11:40 PM +0000 "CLARKE, ED C"
<[email protected]> wrote:
> Hello Quanah,
>
> I am using OpenLDAP, on an IBM LinuxONE server, IBM just helped with
> the setup. I also was able to test the below on my other ldap server &
> it performed as expected & changed the password.
Ok, thanks.
> dn:uid=foxdiv,ou=People,dc=att,dc=com
So this shows the LDAP password change for this user was successful in the LDAP
server on pdprfdl4.dadc.sbc.com
> dn:uid=foxdiv,ou=People,dc=att,dc=com
So this shows the LDAP password change for this user was successful in the
LDAP server on pdprfsl4.sldc.sbc.com
This would show that the LDAP servers are working correctly, and password
modifications to each LDAP server is working correctly. The issue then
between the OS and the integration software being used (SSSD etc).
As an aside, I would note that OpenLDAP 2.4.44 is extremely old. I do see
that you're using an S390 mainframe, so I'm guessing your options are
currently limited in regards to upgrading to a current release. If it ever
becomes an issue (i.e., if your setup is doing replication which I would
strongly advise against doing with 2.4.44), Symas could provide assistance
in this area. Our CTO (who is also the chief architect of the OpenLDAP
project) did the original S390 port of OpenLDAP, so we're quite familiar
and can provide support for such a build.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<https://urldefense.com/v3/__http://www.symas.com__;!!BhdT!3JCRikRm0DMkYlgYA2tfkGumjaMVQCoX9V6cwDp5f6ZRw_NeOHSjhKik_Gkzzg$
>
