SUMMARY: ldap - how to change userPassword value

From: Beck, Joseph <>
Date: Mon Jun 05 2006 - 11:03:49 EDT
Thanks to all who responded...

To change a user's password via CLI:
/usr/bin/ldapmodify -h HOST -D "cn=directory manager" -w PASSWORD
dn: uid=USER,ou=People,dc=DOMAIN,dc=COM
changetype: modify
replace: userPassword
userPassword: newpassword

console/GUI several agreed is not best utility out there for these types
of tasks.

-----Original Message-----
[]On Behalf Of Beck, Joseph
Sent: Friday, June 02, 2006 11:10 AM
Subject: ldap - how to change userPassword value

>From man passwd, I see you can do a

passwd -r ldap <username>

but when I try to do that I get permission denied

I was hoping there was a way to pass in cn=Directory Manager

But I don't see it.

I also went to the IDS (sun directory server) console & tried to do it
thru there, but I have some confusion around what shows up there. There
is a password attribute but I don't believe it's the userPassword. I
guess I don't yet grasp how the attributes & values of some of the
objectclasses map & how to edit them

bash-3.00# ldaplist -l passwd jbeck

dn: uid=jbeck,ou=people,

        cn: jbeck

        uidNumber: 1675

        gidNumber: 1008

        gecos: Joe Beck

        homeDirectory: /home/jbeck

        loginShell: /bin/ksh

        objectClass: posixAccount

        objectClass: shadowAccount

        objectClass: account

        objectClass: top

        uid: jbeck

        userPassword: {crypt}4jshG123YQxxx

        shadowLastChange: 13248

        shadowFlag: 0

I fell back on the delete the acct & readd it due to meeting a deadline,
but would like to know the correct process for future needs.

Joe Beck Ciber Inc. - a consultant to SEI  One Freedom Valley Drive |
Oaks, PA 19456 | p: 610.676.2258 |
sunmanagers mailing list
sunmanagers mailing list
Received on Mon Jun 5 11:04:23 2006

This archive was generated by hypermail 2.1.8 : Thu Mar 03 2016 - 06:43:58 EST