You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@directory.apache.org by Markus Weber <bu...@googlemail.com> on 2014/07/02 12:43:19 UTC
Password EXOP
Hey Guys,
I wonder if it is possible to force Apache Directory Studio to use EXOP
Password method?
Background:
I have a OpenLDAP Directory with the smbk5pwd Module that writes the NT
Hash on passwordchange. It works with unix passwd command and with pwm
(http://code.google.com/p/pwm/) but i does not with Apache Directory
Studio. I thought i might be caused by the way Apache Directory Studio
handles Password changes. But i am not an "LDAP Guy" so this is just a
guess.
Maybe you can tell me if this has sth. to do with it or i am on the wrong
track and if there is a way to use EXOP in Apache Directory Studio.
Thanks in advance,
Markus
Re: Password EXOP
Posted by Markus Weber <bu...@googlemail.com>.
Thanks Kiran,
for making it clear.
Thats exactly the answer i expected, although not what i wanted to hear xD
Am 02.07.2014, 14:00 Uhr, schrieb Kiran Ayyagari <ka...@apache.org>:
> On Wed, Jul 2, 2014 at 5:21 PM, Markus Weber
> <bu...@googlemail.com>
> wrote:
>
>> Hey Kiran,
>>
>> Thanks for the fast reply. No Apache Directory Studio gives me this:
>> #!RESULT OK
>> #!CONNECTION ldap://ldap-master.example.com:389
>> #!DATE 2014-07-02T10:42:17.540
>> dn: uid=Markus,ou=users,dc=example,dc=com
>> changetype: modify
>> replace: userPassword
>> userPassword:: B64EncodedString==
>> -
>>
>> But the NTHash is not changed by the overlay.
>
> looks like the overlay is only triggered during a password modify
> extended
> operation,
> which is not used by Studio during the above update.
>
> Can you raise a feature request for Studio here[1], this is for giving an
> option to use
> password modify extended operation for password changes.
>
> [1] https://issues.apache.org/jira/browse/DIRSTUDIO
>
>>
>>
>> is Studio giving an error message when you try to change the password?
>>> can you check the logs on your OpenLDAP server as well for any error
>>> messages?
>>>
>>
>>
>
Re: Password EXOP
Posted by Kiran Ayyagari <ka...@apache.org>.
On Wed, Jul 2, 2014 at 5:21 PM, Markus Weber <bu...@googlemail.com>
wrote:
> Hey Kiran,
>
> Thanks for the fast reply. No Apache Directory Studio gives me this:
> #!RESULT OK
> #!CONNECTION ldap://ldap-master.example.com:389
> #!DATE 2014-07-02T10:42:17.540
> dn: uid=Markus,ou=users,dc=example,dc=com
> changetype: modify
> replace: userPassword
> userPassword:: B64EncodedString==
> -
>
> But the NTHash is not changed by the overlay.
looks like the overlay is only triggered during a password modify extended
operation,
which is not used by Studio during the above update.
Can you raise a feature request for Studio here[1], this is for giving an
option to use
password modify extended operation for password changes.
[1] https://issues.apache.org/jira/browse/DIRSTUDIO
>
>
> is Studio giving an error message when you try to change the password?
>> can you check the logs on your OpenLDAP server as well for any error
>> messages?
>>
>
>
--
Kiran Ayyagari
http://keydap.com
Re: Password EXOP
Posted by Markus Weber <bu...@googlemail.com>.
Hey Kiran,
Thanks for the fast reply. No Apache Directory Studio gives me this:
#!RESULT OK
#!CONNECTION ldap://ldap-master.example.com:389
#!DATE 2014-07-02T10:42:17.540
dn: uid=Markus,ou=users,dc=example,dc=com
changetype: modify
replace: userPassword
userPassword:: B64EncodedString==
-
But the NTHash is not changed by the overlay.
> is Studio giving an error message when you try to change the password?
> can you check the logs on your OpenLDAP server as well for any error
> messages?
Fwd: Password EXOP
Posted by Markus Weber <bu...@googlemail.com>.
Hey Guys,
I wonder if it is possible to force Apache Directory Studio to use EXOP
Password method?
Background:
I have a OpenLDAP Directory with the smbk5pwd Module that writes the NT
Hash on passwordchange. It works with unix passwd command and with pwm
(http://code.google.com/p/pwm/) but i does not with Apache Directory
Studio. I thought i might be caused by the way Apache Directory Studio
handles Password changes. But i am not an "LDAP Guy" so this is just a
guess.
Maybe you can tell me if this has sth. to do with it or i am on the wrong
track and if there is a way to use EXOP in Apache Directory Studio.
Thanks in advance,
Markus
Re: Password EXOP
Posted by Kiran Ayyagari <ka...@apache.org>.
On Wed, Jul 2, 2014 at 4:13 PM, Markus Weber <bu...@googlemail.com>
wrote:
> Hey Guys,
>
> I wonder if it is possible to force Apache Directory Studio to use EXOP
> Password method?
> Background:
> I have a OpenLDAP Directory with the smbk5pwd Module that writes the NT
> Hash on passwordchange. It works with unix passwd command and with pwm (
> http://code.google.com/p/pwm/) but i does not with Apache Directory
> Studio. I thought i might be caused by the way Apache Directory Studio
> handles
is Studio giving an error message when you try to change the password?
can you check the logs on your OpenLDAP server as well for any error
messages?
> Password changes. But i am not an "LDAP Guy" so this is just a guess.
>
> Maybe you can tell me if this has sth. to do with it or i am on the wrong
> track and if there is a way to use EXOP in Apache Directory Studio.
>
>
> Thanks in advance,
> Markus
>
--
Kiran Ayyagari
http://keydap.com