On Tue, July 16, 2013 9:08 am, Szládovics Péter wrote: > 2013-07-16 14:29 keltezéssel, Bo Lynch Ãrta: >> We are using openldap-2.3.43-25.el5_8.1. So no crypt passwords for ldap? >> Bummer. Does the change password work with mysql with encrypted >> passwords? > > Corrections below from Alain Abbas: > > for completing my response : > in slapd.conf if you use it you should have : > access to * > by self write > > Le Mardi 16 Juillet 2013 01:49 CEST, "ABBAS Alain" > <alain.ab...@libertech.fr> a écrit: > HEllo > 1) the error 0x32 is a LDAP ACL problem you must allow the entry to be > modified by itself (in openldap by > the keyword "self" > > 2) To respond at the last post about clear password > by default the password is generated in clear but you have got a special > parameter (page 22 of the installation guide) to tell Sogo to crypt the > password > In case of openldap you should set "userPasswordAlgorithm =SSHA;" in the > SogoUserSource section > and Sogo will crypt the password. This parameter depends of the LDAP > server software. > > I just tried and verified on a Sogo 2.0.6b : ) > > -- OK.... my SOGoUserPasswordAlgorithm = crypt; this works fine with logging in until I add access to * by self write in slapd.conf then it complains about wrong user name and password. sogo log states Jul 16 19:49:21 sogod [7633]: <0x0x85ecfb4[LDAPSource]> <NSException: 0x863bbcc> NAME:LDAPException REASON:operation bind failed: Invalid credentials (0x31) INFO:{login = "uid=blynch,ou=users,dc=domain,dc=com"; } Jul 16 19:49:21 sogod [7633]: SOGoRootPage Login from '69.21.x.x' for user 'blynch' might not have worked - password policy: 65535 grace: -1 expire: -1 bound: 0 69.21.103.130 - - [16/Jul/2013:19:49:21 GMT] "POST /SOGo/connect HTTP/1.1" 403 34/44 0.005 - - 520K
-- users@sogo.nu https://inverse.ca/sogo/lists