Nima Talebi <[email protected]> writes:
> Thanks for getting back to me so fast! Well, even if that's the case - I
> don't mind, but here's a little more depth into the problem...
Ah. A different problem from what I thought, I suspect, making my answer less
relevant. I thought it was a deliberately expired password. ;)
> I can bind to the LDAP server as a user, and have that user issue a change
> of password for themselves - and that works fine.
>
> I can do the same via the admin user too of course.
>
> Regardless of how I change the password, I still get:
>
> % ssh darius
> You are required to change your LDAP password immediately.
> Connection closed by 10.211.55.3
So, what does 'passwd -S' show for 'darius' on that machine? Specifically,
does it report something sensible for the status and age fields?
Also, what does your /etc/pam.d/sshd file look like? I doubt it is relevant,
but just in case...
Anyway, not a problem I have experienced. (The "can't change password" is,
but our LDAP / ssh / password auth stuff just works(tm), I fear.)
Daniel
--
✣ Daniel Pittman ✉ [email protected] ☎ +61 401 155 707
♽ made with 100 percent post-consumer electrons
--
SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/
Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
