Comments on: PHP LDAP change password page http://www.warden.pl/2009/09/02/php-ldap-change-password-page/#utm_source=feed&utm_medium=feed&utm_campaign=feed "Idiopathic, from the Latin meaning we're idiots cause we can't figure out what's causing it." by dr House Sat, 04 Feb 2012 00:00:09 +0000 hourly 1 http://wordpress.org/?v=3.1.1 By: Greg http://www.warden.pl/2009/09/02/php-ldap-change-password-page/#comment-1561 Greg Sat, 04 Feb 2012 00:00:09 +0000 http://www.radek.org.pl/?p=149#comment-1561 I am also getting error Error E100 – Wrong user. I am running Active Directory 2003. I can bind to LDAP anonymously. I cannot figure out if I have the $dn variable set correctly. Any advice is greatly appreciated. I am also getting error Error E100 – Wrong user. I am running Active Directory 2003. I can bind to LDAP anonymously. I cannot figure out if I have the $dn variable set correctly. Any advice is greatly appreciated.

]]> By: carlos http://www.warden.pl/2009/09/02/php-ldap-change-password-page/#comment-1560 carlos Tue, 31 Jan 2012 22:15:14 +0000 http://www.radek.org.pl/?p=149#comment-1560 the script works perfectly. the script works perfectly.

]]> By: sti http://www.warden.pl/2009/09/02/php-ldap-change-password-page/#comment-1556 sti Mon, 02 Jan 2012 20:14:43 +0000 http://www.radek.org.pl/?p=149#comment-1556 I am also getting error Error E100 - Wrong user. Running the code on a Ubuntu server, but authenticating with a windows server 2003 domain controller. Any ideas or suggestions? Thanks in advance! I am also getting error Error E100 – Wrong user. Running the code on a Ubuntu server, but authenticating with a windows server 2003 domain controller. Any ideas or suggestions?

Thanks in advance!

]]> By: warden http://www.warden.pl/2009/09/02/php-ldap-change-password-page/#comment-1553 warden Fri, 11 Nov 2011 21:28:08 +0000 http://www.radek.org.pl/?p=149#comment-1553 No, this script is for LDAP only. No, this script is for LDAP only.

]]> By: warden http://www.warden.pl/2009/09/02/php-ldap-change-password-page/#comment-1552 warden Fri, 11 Nov 2011 21:27:31 +0000 http://www.radek.org.pl/?p=149#comment-1552 You have to configure slapd to that it allows anonymous searching: Check your slapd.conf for: access to * by dn="cn=admin,dc=domain,dc=com" write by * read That last line is important. You have to configure slapd to that it allows anonymous searching:
Check your slapd.conf for:

access to *
by dn=”cn=admin,dc=domain,dc=com” write
by * read

That last line is important.

]]> By: wtc http://www.warden.pl/2009/09/02/php-ldap-change-password-page/#comment-1551 wtc Fri, 11 Nov 2011 18:12:43 +0000 http://www.radek.org.pl/?p=149#comment-1551 Hi, I'm using Mac osx server version of openLDAP. I still cannot change the password and keep getting the result of "E200 - Your password cannot be change, please contact the administrator." Does it have to do with some authentication or what? Or something I need to setup in the server? Thanks Hi, I’m using Mac osx server version of openLDAP. I still cannot change the password and keep getting the result of “E200 – Your password cannot be change, please contact the administrator.”
Does it have to do with some authentication or what? Or something I need to setup in the server?
Thanks

]]> By: Anh http://www.warden.pl/2009/09/02/php-ldap-change-password-page/#comment-1550 Anh Wed, 09 Nov 2011 03:14:19 +0000 http://www.radek.org.pl/?p=149#comment-1550 Hi, Can this script change password in other modules? Wemin, for example, allows users to change their password in ldap server and samba module. Thanks, Hi,

Can this script change password in other modules? Wemin, for example, allows users to change their password in ldap server and samba module.

Thanks,

]]> By: Charles Kozler http://www.warden.pl/2009/09/02/php-ldap-change-password-page/#comment-1534 Charles Kozler Tue, 11 Oct 2011 19:32:45 +0000 http://www.radek.org.pl/?p=149#comment-1534 Hey, nevermind! To resolve I uncommented what was in the default slapd.conf # users can authenticate and change their password access to attrs=userPassword,sambaNTPassword,sambaLMPassword,sambaPwdMustChange,sambaPwdLastSet by self write by anonymous auth by * none Which actually led to LDAP failing to authenticate any users so I had to also uncomment the next part ## all others attributes are readable to everybody access to * by * read I guess if you have everything commented out it assumes some default ACL behavior but if you uncomment one thing, it only uses what is explicitly there. Thanks again for the wonderful script! Hey, nevermind! To resolve I uncommented what was in the default slapd.conf

# users can authenticate and change their password
access to attrs=userPassword,sambaNTPassword,sambaLMPassword,sambaPwdMustChange,sambaPwdLastSet
by self write
by anonymous auth
by * none

Which actually led to LDAP failing to authenticate any users so I had to also uncomment the next part

## all others attributes are readable to everybody
access to *
by * read

I guess if you have everything commented out it assumes some default ACL behavior but if you uncomment one thing, it only uses what is explicitly there.

Thanks again for the wonderful script!

]]> By: Charles Kozler http://www.warden.pl/2009/09/02/php-ldap-change-password-page/#comment-1533 Charles Kozler Tue, 11 Oct 2011 19:16:20 +0000 http://www.radek.org.pl/?p=149#comment-1533 Hi, First off, thank you very much for this! I was able to get it running but fail at changing the actual password. I can confirm that users can change their passwords but usually only when they are logged in to the Windows PC- a little background: I have Samba PDC + OpenLDAP and I have noticed that users can only change their passwords when they are logged in to the PC and pressing Ctrl+Alt+Del so I am wondering if it is an ACL issue? I saw something above but the last time I messed with ACL's I nearly broke the entire LDAP Domain system by doing so- that said, any help you could give me to get debug this issue further would be great (eg: some variables to tune the debugging, etc)- I can probably work through most of it since I am pretty well versed in PHP but have never messed with the LDAP libraries for it. Thanks again Hi,

First off, thank you very much for this! I was able to get it running but fail at changing the actual password. I can confirm that users can change their passwords but usually only when they are logged in to the Windows PC- a little background: I have Samba PDC + OpenLDAP and I have noticed that users can only change their passwords when they are logged in to the PC and pressing Ctrl+Alt+Del so I am wondering if it is an ACL issue? I saw something above but the last time I messed with ACL’s I nearly broke the entire LDAP Domain system by doing so- that said, any help you could give me to get debug this issue further would be great (eg: some variables to tune the debugging, etc)- I can probably work through most of it since I am pretty well versed in PHP but have never messed with the LDAP libraries for it.

Thanks again

]]> By: David http://www.warden.pl/2009/09/02/php-ldap-change-password-page/#comment-1520 David Wed, 20 Jul 2011 21:34:43 +0000 http://www.radek.org.pl/?p=149#comment-1520 Just wanted to drop yet another note to say thanks. Plugged it into our intranet and works like a charm! Just wanted to drop yet another note to say thanks. Plugged it into our intranet and works like a charm!

]]>