On Tue, July 16, 2013 9:08 am, Szládovics Péter wrote:
> 2013-07-16 14:29 keltezéssel, Bo Lynch Ãrta:
>> We are using openldap-2.3.43-25.el5_8.1. So no crypt passwords for ldap?
>> Bummer. Does the change password work with mysql with encrypted
>> passwords?
>
> Corrections below from Alain Abbas:
>
> for completing my response :
> in slapd.conf if you use it you should have :
> access to *
> by self write
>
> Le Mardi 16 Juillet 2013 01:49 CEST, "ABBAS Alain"
> <alain.ab...@libertech.fr> a écrit:
> HEllo
> 1) the error 0x32 is a LDAP ACL problem you must allow the entry to be
> modified by itself (in openldap by
> the keyword "self"
>
> 2) To respond at the last post about clear password
> by default the password is generated in clear but you have got a special
> parameter (page 22 of the installation guide) to tell Sogo to crypt the
> password
> In case of openldap you should set "userPasswordAlgorithm =SSHA;" in the
> SogoUserSource section
> and Sogo will crypt the password. This parameter depends of the LDAP
> server software.
>
> I just tried and verified on a Sogo 2.0.6b : )
>
> --
OK....
my SOGoUserPasswordAlgorithm = crypt;
this works fine with logging in until I add
access to *
by self write
in slapd.conf then it complains about wrong user name and password.
sogo log states
Jul 16 19:49:21 sogod [7633]: <0x0x85ecfb4[LDAPSource]> <NSException:
0x863bbcc> NAME:LDAPException REASON:operation bind failed: Invalid
credentials (0x31) INFO:{login = "uid=blynch,ou=users,dc=domain,dc=com"; }
Jul 16 19:49:21 sogod [7633]: SOGoRootPage Login from '69.21.x.x' for user
'blynch' might not have worked - password policy: 65535 grace: -1
expire: -1 bound: 0
69.21.103.130 - - [16/Jul/2013:19:49:21 GMT] "POST /SOGo/connect HTTP/1.1"
403 34/44 0.005 - - 520K
--
users@sogo.nu
https://inverse.ca/sogo/lists
