Bug 4110 - ldap passwd sync = yes stopped working
Summary: ldap passwd sync = yes stopped working
Status: RESOLVED INVALID
Alias: None
Product: Samba 3.0
Classification: Unclassified
Component: nmbd (show other bugs)
Version: 3.0.23b
Hardware: x86 Windows XP
: P3 normal
Target Milestone: none
Assignee: Samba Bugzilla Account
QA Contact: Samba QA Contact
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2006-09-18 13:15 UTC by Nikolay A Mirin
Modified: 2006-11-08 18:54 UTC (History)
0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Nikolay A Mirin 2006-09-18 13:15:10 UTC 
Hi, once I have upgraded my samba installation two weeks ago,
I noticed that ldap passwd sync = yes doesn't work.

Samba does not update userPassword attribute in LDAP database.

One can update it calling smbldap-passwd or ldappasswd,
both work just fine. So definitely permissions are OK.
And it was working before, I am sure.

Let me know if any extra feedback or testing is needed.

Thanks
Comment 1 Nikolay A Mirin 2006-11-08 18:54:12 UTC 
I noticed that samba complains about not being able to find rootDSE,
and than requesting the password update non-supported by the LDAP server.

So, I realized, that I need to make my rootDSE on LDAP accessible.
Though, it is strange, since samba binds to ldap using superuser
credentials.
Solved by adding to slapd.conf:

access to dn.exact=""
                by self write
                by users read
                by * auth