Tivoli Directory Server: "Insufficient access --- Error, Password may not be modified"
When you create a normal interOrgPerson entry using cn=root in Tivoli Directory Server, it has this attribute
entryOwner: access-id:CN=ROOT
Because of this when you try to change the password, you will see an error like below
[root@localhost etc]# idsldapchangepwd -D "cn=chirag,ou=users,ou=JK Enterprise,O=sample" -w passwd -n chirag1! -p 1389
ldap_simple_bind: Error, Password must be changed after reset
changing password for entry cn=chirag,ou=users,ou=JK Enterprise,O=sample
Insufficient access --- Error, Password may not be modified
entryOwner: access-id:CN=ROOT
Because of this when you try to change the password, you will see an error like below
[root@localhost etc]# idsldapchangepwd -D "cn=chirag,ou=users,ou=JK Enterprise,O=sample" -w passwd -n chirag1! -p 1389
ldap_simple_bind: Error, Password must be changed after reset
changing password for entry cn=chirag,ou=users,ou=JK Enterprise,O=sample
Insufficient access --- Error, Password may not be modified
Change the attribute like this and then attempt to change the password
entryOwner: access-id:CN=this
[root@localhost etc]# idsldapchangepwd -D "cn=chirag,ou=users,ou=JK Enterprise,O=IDAAS" -w passwd -n chirag1! -p 1389
ldap_simple_bind: Error, Password must be changed after reset
changing password for entry cn=chirag,ou=users,ou=JK Enterprise,O=sample
Labels: Password may not be modified, Tivoli Directory Server
posted by Chirag Radhakrishnan @ October 07, 2014
0 Comments
0 Comments:
Post a Comment
Subscribe to Post Comments [Atom]
<< Home