Activation not working as expected (NDS)

[GoogleCodeExporter]

What steps will reproduce the problem?
1. Enable user activation
2. Create a user with loginDisabled=true
3. Try to activate
$. Activation fails, because the user is disabled

What is the expected output? What do you see instead?

Expected: user enabled and activated
Seen: error message in logs: LDAP: error code 53 - NDS error: log account 
expired (-220)

Please use labels and text to provide additional information.

Revision: from SVN.

The default PWM configuration suggests that the user should have 
loginDisabled=true as a prerequisite for activation. After activation, the 
attribute is changed (loginDisabled=false).

However, if the user is is disabled using loginDisabled=true, the 
authentication test in authUserWithUnknownPassword will fail.

User should be enabled before testing the credentials. This can be done, by 
having the proxy user change the attributes before the test, or temporarily 
enabling the account.

Original issue reported on code.google.com by menno.pi...@gmail.com on 27 Mar 2011 at 11:22

[GoogleCodeExporter]

resolved by adding two configurable attribute settings, one that gets set 
before the auth/password change and one that gets set after password change.  
svn revision 158.

Original comment by jrivard on 17 May 2011 at 2:35

• Changed state: Fixed