search for: ldapoperationmanag

...erified that with their AD environment, the user IS presented with a password change dialogue. So, it seems that samba behaves different than a true windows AD server. Running keycloak in debugmode, I can see that: > 2017-01-27 09:49:22,664 DEBUG > [org.keycloak.storage.ldap.idm.store.ldap.LDAPOperationManager] > (default task-10) Authentication failed for DN > [CN=username,CN=Users,DC=samba,DC=company,DC=com]: > javax.naming.AuthenticationException: [LDAP: error code 49 - Simple > Bind Failed: NT_STATUS_PASSWORD_MUST_CHANGE] So, finally for the samba-related question: does anyone know if...

...the user IS presented with a password change > dialogue. > > So, it seems that samba behaves different than a true windows AD > server. > > Running keycloak in debugmode, I can see that: > > 2017-01-27 09:49:22,664 DEBUG > > [org.keycloak.storage.ldap.idm.store.ldap.LDAPOperationManager] > > (default task-10) Authentication failed for DN > > [CN=username,CN=Users,DC=samba,DC=company,DC=com]: > > javax.naming.AuthenticationException: [LDAP: error code 49 - Simple > > Bind Failed: NT_STATUS_PASSWORD_MUST_CHANGE] > > So, finally for the samba-related...

...than a true windows AD > server. That isn't a total surprise, sadly. We are very close, but things like this do still come up from time to time. > Running keycloak in debugmode, I can see that: > > 2017-01-27 09:49:22,664 DEBUG > > [org.keycloak.storage.ldap.idm.store.ldap.LDAPOperationManager] > > (default task-10) Authentication failed for DN > > [CN=username,CN=Users,DC=samba,DC=company,DC=com]: > > javax.naming.AuthenticationException: [LDAP: error code 49 - Simple > > Bind Failed: NT_STATUS_PASSWORD_MUST_CHANGE] > > So, finally for the samba-related...