Following documentation here: http://docs.apigee.com/private-cloud/latest/resetting-passwords#resetopenldappassword
Any idea why I get the error below?
/opt/apigee/apigee-service/bin/apigee-service apigee-openldap change-ldap-password -o secret -n weakpass
ldap_bind: Invalid credentials (49)
additional info: 80090308: LdapErr: DSID-0C0903D9, comment: AcceptSecurityContext error, data 52e, v2580
Error: OpenLDAP password could not be changed
I know I have the correct old password because this works:
ldapsearch -b "uid=admin,ou=users,ou=global,dc=apigee,dc=com" -x -w secret -D "cn=manager,dc=apigee,dc=com" -H ldap://localhost:10389 -LLL
dn: uid=admin,ou=users,ou=global,dc=apigee,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: inetOrgPerson
objectClass: top
uid: admin
cn: admin
sn: admin
I also followed the manual procedure as though I had forgotten the password and then repeated the procedure above, but I receive the same error.
Hi @cmoser , How many openldap nodes do you have?
Just one in that Planet
Hi,
The problem is this case was related to the fact a different ldapmodify command was being invoked. So the solution was to update:
/opt/apigee/apigee-openldap/lib/actions/change-ldap-password
to use the standard /usr/bin/ldapmodify command.
User | Count |
---|---|
7 | |
2 | |
2 | |
1 | |
1 |