Hello All,
I am using a web ui to add end delete users. When I reset or try to add a password I get: LDAP error, server says: Constraint violation - invalid password syntax - passwords with storage scheme are not allowed
What do I need to turn on to be able to use the web ui to edit passwords?
Thanks again!
(Using LAM web ui)
Regards.
On 8/26/19 4:33 PM, Fernando Fuentes wrote:
Hello All,
I am using a web ui to add end delete users. When I reset or try to add a password I get: LDAP error, server says: Constraint violation - invalid password syntax - passwords with storage scheme are not allowed
What do I need to turn on to be able to use the web ui to edit passwords?
Not familiar with LAM, but looks like its trying to add a pre-hashed password - which is not allowed. Now you can override it by setting this attribute under cn=config:
nsslapd-allow-hashed-passwords: on
But if the LAM pre-hashed password is not in the format the server uses then authentication will not work. This is why we only accept clear text passwords when updating userpassword.
Mark
Thanks again!
(Using LAM web ui) Regards.
389-users mailing list -- 389-users@lists.fedoraproject.org To unsubscribe send an email to 389-users-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject....
Mark,
Thanks. That did the trick!
On 8/26/19 3:57 PM, Mark Reynolds wrote:
On 8/26/19 4:33 PM, Fernando Fuentes wrote:
Hello All,
I am using a web ui to add end delete users. When I reset or try to add a password I get: LDAP error, server says: Constraint violation - invalid password syntax - passwords with storage scheme are not allowed
What do I need to turn on to be able to use the web ui to edit passwords?
Not familiar with LAM, but looks like its trying to add a pre-hashed password - which is not allowed. Now you can override it by setting this attribute under cn=config:
nsslapd-allow-hashed-passwords: on
But if the LAM pre-hashed password is not in the format the server uses then authentication will not work. This is why we only accept clear text passwords when updating userpassword.
Mark
Thanks again!
(Using LAM web ui) Regards.
389-users mailing list --389-users@lists.fedoraproject.org To unsubscribe send an email to389-users-leave@lists.fedoraproject.org Fedora Code of Conduct:https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines:https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives:https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject....
--
389 Directory Server Development Team
389-users@lists.fedoraproject.org