[Bug 329067] Re: Cannot change password on ldap client, need to have 'try_authtok' in the pam config or libpam-cracklib installed
Note the similar bug in libpam-winbind: https://bugs.launchpad.net/ubuntu/+source/samba/+bug/570944 (and https://bugs.debian.org/858923). I propose a new "try_authtok" option to solve this (I'm writing a patch for libpam-winbind). ** Bug watch added: Debian Bug tracker #858923 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858923 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/329067 Title: Cannot change password on ldap client, need to have 'try_authtok' in the pam config or libpam-cracklib installed To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libpam-ldap/+bug/329067/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 329067] Re: Cannot change password on ldap client, need to have 'try_authtok' in the pam config or libpam-cracklib installed
Definitely still an issue in yakkety. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/329067 Title: Cannot change password on ldap client, need to have 'try_authtok' in the pam config or libpam-cracklib installed To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libpam-ldap/+bug/329067/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 329067] Re: Cannot change password on ldap client, need to have 'try_authtok' in the pam config or libpam-cracklib installed
Contrary to what happens in 12.04 (precise) and 14.04 (trusty), if I use the following command in 16.04 (xenial) to configure an LDAP client: apt-get install ldap-auth-client nscd libnss-ldapd it seems to install libpam-ldapd instead of libpam-ldap. What seems to be relevant to this bug report is that on this 16.04 system I don't have try_authtok in my /etc/pam.d/common-password and passwd works fine. However I haven't tried to force the use of libpam-ldap instead of libpam-ldapd to see what happens. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/329067 Title: Cannot change password on ldap client, need to have 'try_authtok' in the pam config or libpam-cracklib installed To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libpam-ldap/+bug/329067/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 329067] Re: Cannot change password on ldap client, need to have 'try_authtok' in the pam config or libpam-cracklib installed
8 years later this is still an issue in Yakkety. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/329067 Title: Cannot change password on ldap client, need to have 'try_authtok' in the pam config or libpam-cracklib installed To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libpam-ldap/+bug/329067/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 329067] Re: Cannot change password on ldap client, need to have 'try_authtok' in the pam config or libpam-cracklib installed
It might be of value to note that the "try_authtok" option for the pam_ldap.so library ist neither documented nor used, producing in the /var/log/auth.log the following line : "illegal option try_authtok". Since illegal options are ignored, it produces exactly the same behaviour as simply removing use_authtok altogether. Because of this i'd recommend changing the title of the bug to something like : "cannot change user password on a LDAP client when the option use_authtok is used with pam_ldap.so". -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/329067 Title: Cannot change password on ldap client, need to have 'try_authtok' in the pam config or libpam-cracklib installed To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libpam-ldap/+bug/329067/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs