Dear all,
the user "abc" wants to change her password but failed with the error msg shown below:
$ passwd abc
Enter existing login password:
This password differs from your secure RPC password.
Please enter your old Secure RPC password:
New Password:
Re-enter new Password:
Permission denied
We are using NIS+ server for authentication. Do yu know what the problem is?
Regards,
Joe
let me repeat my question in this way: I have the dn of a user in Sun One Directory Server and I put it under a group, says "manager". What is for suggestion that I can use the dn of the user only to retrieve the group ("manager" in this case) to which the user belongs?
Regards,
Joe
Same "Permission denied" problem appears by "passwd -r nis" on Solaris 10 JASS NIS client . NIS master/yppasswdd runs on Solaris 8. Snooping network communication shows yppasswdd return packages like "Garbage arguments". Also tested different patch versions on Solaris 10 client but without changing results. Solaris 10 client without JASS works fine. It 's definitely a JASS issue. But which configuration or adjustment cause the problem?
Torsten
The Problem is solved now! Its caused by different local password encryption policy configured in /etc/security/policy.conf . JASS modifies the local password policy settings in finish script "set-flexible-crypt.fin" against specific driver (e.g. server-secure.driver) In all cases local encryption algorithmus is defined to "BSD/Linux md5" (1). Changing CRYPT_DEFAULT option (in case of NIS to UNIX crypt) solves encryption incompatibility.
I propose to set local default encryption policy like used passwordStorageScheme attribute value to run "passwd -r ldap" properly.
Torsten
