I gave a way not necessary the solution, it depends on your acl that you have already in your ldap and your
customization
The error that you have in the Sogo's log is the result of the LDAP operation (here 0x31 invalid credantial)
did you chech how is crypted the password on an entry that run?
i think by default openldap crypt in SSHA and not with the old crypt method
regard
Le Mardi 16 Juillet 2013 21:51 CEST, "Bo Lynch" <bly...@ameliaschools.com> a écrit:
On Tue, July 16, 2013 9:08 am, Szládovics Péter wrote:
> 2013-07-16 14:29 keltezéssel, Bo Lynch Ãrta:
>> We are using openldap-2.3.43-25.el5_8.1. So no crypt passwords for ldap?
>> Bummer. Does the change password work with mysql with encrypted
>& gt; passwords?
>
> Corrections below from Alain Abbas:
>
> for completing my response :
> in slapd.conf if you use it you should have :
> access to *
> by self write
>
> Le Mardi 16 Juillet 2013 01:49 CEST, "ABBAS Alain"
> a écrit:
> HEllo
> 1) the error 0x32 is a LDAP ACL problem you must allow the entry to be
> modified by itself (in openldap by
> the keyword "self"
>
> 2) To respond at the last post about clear password
> by default the password is generated in clear but you have got a special
> parameter (page 22 of the installation guide) to tell Sogo to crypt the
> password
> In case of openldap you should set "userPasswordAlgorithm =SSHA;" in the
> SogoUserSource section
> and Sogo will crypt the password. This parameter depends of the LDAP
> se rver software.
>
> I just tried and verified on a Sogo 2.0.6b : )
>
> --
OK....
my SOGoUserPasswordAlgorithm = crypt;
this works fine with logging in until I add
access to *
by self write
in slapd.conf then it complains about wrong user name and password.
sogo log states
Jul 16 19:49:21 sogod [7633]: <0x0x85ecfb4[LDAPSource]> 0x863bbcc> NAME:LDAPException REASON:operation bind failed: Invalid
credentials (0x31) INFO:{login = "uid=blynch,ou=users,dc=domain,dc=com"; }
Jul 16 19:49:21 sogod [7633]: SOGoRootPage Login from '69.21.x.x' for user
'blynch' might not have worked - password policy: 65535 grace: -1
expire: -1 bound: 0
69.21.103.130 - - [16/Jul/2013:19:49:21 GMT] "POST /SOGo/connect HTTP/1.1"
403 34/44 0.005 - - 520K
--
users@sogo.nu
https://inverse.ca/sogo/lists
--
Directeur
03 83 18 02 70
