Graham Leggett
2008-Mar-25 08:01 UTC
[Samba] ldapsam_modify_entry: LDAP Password could not be changed for user michael: Confidentiality required
Hi all,
To compound my problems, I am now unable to change the password on the
problem user. The following error message is displayed.
[root@gatekeeper samba]# smbpasswd michael
New SMB password:
Retype new SMB password:
ldapsam_modify_entry: LDAP Password could not be changed for user
michael: Confidentiality required
Operation requires a secure connection.
Failed to modify entry for user michael.
Failed to modify password entry for user michael
No clue is given as to whether samba is giving this error, or whether
the idealx tools are giving this error.
Neither samba, nor idealx are configured to use TLS to talk to the LDAP
server, and the LDAP server doesn't require TLS.
I cannot find any obvious trace of a logfile entry that might reveal a
solution to the mystery of why the password cannot be changed.
Can anyone help?
Regards,
Graham
--
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3287 bytes
Desc: S/MIME Cryptographic Signature
Url :
http://lists.samba.org/archive/samba/attachments/20080325/c8086d92/smime.bin
Graham Leggett
2008-Mar-25 08:57 UTC
[Samba] ldapsam_modify_entry: LDAP Password could not be changed for user michael: Confidentiality required
Graham Leggett wrote:> To compound my problems, I am now unable to change the password on the > problem user. The following error message is displayed. > > [root@gatekeeper samba]# smbpasswd michael > New SMB password: > Retype new SMB password: > ldapsam_modify_entry: LDAP Password could not be changed for user > michael: Confidentiality required > Operation requires a secure connection. > > Failed to modify entry for user michael. > Failed to modify password entry for user michael > > No clue is given as to whether samba is giving this error, or whether > the idealx tools are giving this error. > > Neither samba, nor idealx are configured to use TLS to talk to the LDAP > server, and the LDAP server doesn't require TLS. > > I cannot find any obvious trace of a logfile entry that might reveal a > solution to the mystery of why the password cannot be changed.After groping around in the dark, I found some references to ldap passwd sync being broken, and changing this worked: ldap passwd sync = no For some reason, ldap passwd sync seems to be broken on samba 3.0.25b. Regards, Graham -- -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 3287 bytes Desc: S/MIME Cryptographic Signature Url : http://lists.samba.org/archive/samba/attachments/20080325/7f1b5a77/smime.bin