ldap_modify_s Insufficient access

Thorsten D. Marsen t.d.marsen at web.de
Tue Jan 28 12:46:41 GMT 2003

Hi, we are running Samba 2.2.5 using LDAP und pam_ldap (pam_unix2 with auh+account+password=use_ldap) as PDC out of the SuSE 8.1 distribution. It runs very well: Login für Unix&Samba ok, Passwort-Change for Samba via smbpasswd Ok and we are able to manipulate the Linux Password in LDAP using the GQ Client. The only thing that doesn't work is passwd itself:

venezuela:/home/tdm # passwd guest
Changing password for guest.
Enter login(LDAP) password:
New password:
Bad password: a palindrome
Re-enter new password:
LDAP password information update failed: Unknown error

Password changed
venezuela:/home/tdm #

and in /var/log/messages:
Jan 28 13:39:47 venezuela passwd[28505]: pam_ldap: ldap_modify_s Insufficient access

Thanks in advance,

Some conf-staff:

base    dc=tdm-consult, dc=com
ssl     no
# für nss_ldap
crypt   des
# für pam_ldap
pam_filter      objectclass=posixAccount
pam_login_attribute     uid
pam_crypt       local
pam_password    crypt
ldap_version    3

suffix          "dc=tdm-consult,dc=com"
rootdn          "cn=tdm,dc=tdm-consult,dc=com"
rootpw          {crypt}...

auth required   pam_unix2.so    nullok
account required        pam_unix2.so
password required       pam_pwcheck.so  nullok
password required       pam_unix2.so    nullok use_first_pass use_authtok
session required        pam_unix2.so

auth:   use_ldap nullok
account:        use_ldap
password:       use_ldap nullok
session:        none

-------------- next part --------------
HTML attachment scrubbed and removed

More information about the samba-technical mailing list