I just tested a PCI-related password change for a username that is
authenticated against ActiveDirectory when accessing the PF 2.1.0 web
admin interface. If the password contains a special character (or
specifically in this case an exclamation point), the login fails. The
web interface says (in the top left corner) "Invalid sensitive
parameter", and the PF admin_error_log contains:
PHP Warning: ldap_bind() [<a
href='function.ldap-bind'>function.ldap-bind</a>]: Unable to bind to
server: Invalid credentials in /usr/local/pf/html/admin/login.php on
line 144, referer: https://pfence01.bnk.ds.atv:1443/login.php
To clarify:
1) Username: joeuser with password: pass123 works
2) Username: joeuser with password: !Pass123 throws the errors.
The error didn't happen with the same username prior to the password
change, so I know that the ldap configuration for referencing
ActiveDirectory is working properly. Any thoughts/fixes/suggestions?
Nick
------------------------------------------------------------------------------
Forrester Wave Report - Recovery time is now measured in hours and minutes
not days. Key insights are discussed in the 2010 Forrester Wave Report as
part of an in-depth evaluation of disaster recovery service providers.
Forrester found the best-in-class provider in terms of services and vision.
Read this report now! http://p.sf.net/sfu/ibm-webcastpromo
_______________________________________________
Packetfence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
