Hi,

We have found a problem setting the password in OpenLDAP with ldappasswd
(1.3.6.1.4.1.4203.1.11.1) via a Driver from eDirectory.

We use this way for a while now, but today we have found a error.
In the most cases the password is set the way we expected...the trace
looks like this:


Code:
--------------------
[10/12/15 14:00:14.376]:eDir-OpenLDAP ST:eDir-OpenLDAP: LDAPInterface.doPasswordModify() The driver detected that the LDAP server supports the password modify extended operation (1.3.6.1.4.1.4203.1.11.1), so we'll attempt to set the password that way.
[10/12/15 14:00:14.416]:eDir-OpenLDAP ST:eDir-OpenLDAP: LDAPInterface.doPasswordModify() Password change succeeded.
--------------------


But sometimes this happens:


Code:
--------------------
[10/12/15 14:21:16.379]:eDir-OpenLDAP ST:eDir-OpenLDAP: LDAPInterface.doPasswordModify() The driver detected that the LDAP server supports the password modify extended operation (1.3.6.1.4.1.4203.1.11.1), so we'll attempt to set the password that way.
[10/12/15 14:21:16.380]:eDir-OpenLDAP ST:eDir-OpenLDAP: LDAPInterface.doPasswordModify() The following error occurred while attempting to modify the password: null
[10/12/15 14:21:16.380]:eDir-OpenLDAP ST:eDir-OpenLDAP: LDAPInterface.doPasswordModify() The driver detected that the LDAP server supports the password modify extended operation (1.3.6.1.4.1.4203.1.11.1), however, an error occurred when we attempted to perform the password change using the extended operation. We will attempt to set the password by setting a value for the userpassword attribute instead.
[10/12/15 14:21:16.380]:eDir-OpenLDAP ST:eDir-OpenLDAP: LDAP Modify: uid=abc123,ou=users,dc=uni,dc=de
LDAPModification: trace suppressed for modification to userpassword

--------------------

We dont want the Driver to write the password as clear text into the
attribute userpassword.

Does anyone know how we can prevent the Driver from doing this?


--
MaikeLorenz
------------------------------------------------------------------------
MaikeLorenz's Profile: https://forums.netiq.com/member.php?userid=804
View this thread: https://forums.netiq.com/showthread.php?t=54928