-
Notifications
You must be signed in to change notification settings - Fork 325
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Password change for users with cheked account option „User must change password at next logon“ #216
Comments
Hello, If you set AD mode in configuration, this should work by default. We have a code that catches the "User must change password at next logon" and allows password change : self-service-password/pages/change.php Line 142 in 4645d1c
|
The situation shown above is with $ad_mode = false; |
As the BIND does not succeed in this case, the password is changed with the |
$ldap_binddn is the member of administrators; domain admins, enterprise admins, schema admins. Localy with this user i can change passwords and finaly this bind user working in $ad_mode = false; |
You can have more logs by setting |
Error log: |
Hash fixed to $hash = "auto"; |
It may just be AD which refuses the password (not complex enough) |
In my password policy is only 8 character at least and password history for 24 password. Im entering different passwords with 8 characters. |
When the user do not have rights to change password message is: Warning: ldap_mod_replace(): Modify: Insufficient access in C:\xampp\htdocs\self-service\lib\functions.inc.php on line 389 |
Unwilling to perform is returned by AD if connection is on LDAP and not LDAPS or password quality is too low. |
Thank you. I have found the solution. In fact it was related to LDAPS. |
can you expand on what your solution was? Am having same issue. Get Pasword was refused if change password is checked. |
Hello,
I want to ask abaut password reset for new Windows server 2016 users. I have configured Self Service Password tool. This tool is working. But if i want to change password for user with cheked account option „User must change password at next logon“ Self Service shows the error „Login or password incorrect“.
With unchecked „User must change password at next logon“ account option service is working.
„User must change password at next logon“ account option i need for all new users. For change they password at first login with 2 diferend ways. First one is standard at first login in operating system. Second is with self service.
The text was updated successfully, but these errors were encountered: