search

aoktox / pwm

Automatically exported from code.google.com/p/pwm
0 stars 0 forks source link

Active Directory Integration #78

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago 
What steps will reproduce the problem?
1.Integrate with AD
2.Try to change user's password

What is the expected output? What do you see instead?
Password Changed. 
Insted of password changed, result is: ([LDAP: error code 19 - 0000052D: 
AtrErr: DSID-03190F00, #1: 0: 0000052D: DSID-03190F00, problem 1005 
(CONSTRAINT_ATT_TYPE), data 0, Att 9005a (unicodePwd) ]) even if no constraints 
are set

What version of PWM are you using?
1.5.4

What ldap directory and version are you using?
Microsoft Active Directory Windows Server 2003 (Functional Level Windows 2000 
Mixed)

Original issue reported on code.google.com by luca.maz...@gmail.com on 5 Jul 2011 at 3:36

GoogleCodeExporter commented 9 years ago 
Are you sure there are no password constraints are set at all on the GPO?  The 
one that got me most recently was the "Minimum password age" setting.

There really isn't much PWM can do about this error, it's coming from AD.

Original comment by jrivard on 7 Jul 2011 at 11:22

GoogleCodeExporter commented 9 years ago 
Issue 81 has been merged into this issue.

Original comment by jrivard on 7 Jul 2011 at 11:24

GoogleCodeExporter commented 9 years ago 
If you can't resolve this can you take a screenshot of your password policy GPO 
and upload it here?

Original comment by jrivard on 7 Jul 2011 at 12:02

GoogleCodeExporter commented 9 years ago 
Just found the issue in the GPO. I was unaware we had "min password age" set to 
1 day so testing would be all but impossible with that setting. Changed that to 
"0" and we're golden.

Original comment by andrew.s...@gmail.com on 7 Jul 2011 at 1:17

GoogleCodeExporter commented 9 years ago 
Great, glad your working!

Original comment by jrivard on 7 Jul 2011 at 1:20