Error when trying to reset openldap password

Not applicable

Following documentation here: http://docs.apigee.com/private-cloud/latest/resetting-passwords#resetopenldappassword

Any idea why I get the error below?

/opt/apigee/apigee-service/bin/apigee-service apigee-openldap change-ldap-password -o secret -n weakpass

ldap_bind: Invalid credentials (49)

additional info: 80090308: LdapErr: DSID-0C0903D9, comment: AcceptSecurityContext error, data 52e, v2580

Error: OpenLDAP password could not be changed

I know I have the correct old password because this works:

ldapsearch -b "uid=admin,ou=users,ou=global,dc=apigee,dc=com" -x -w secret -D "cn=manager,dc=apigee,dc=com" -H ldap://localhost:10389 -LLL

dn: uid=admin,ou=users,ou=global,dc=apigee,dc=com

objectClass: organizationalPerson

objectClass: person

objectClass: inetOrgPerson

objectClass: top

uid: admin

cn: admin

sn: admin

I also followed the manual procedure as though I had forgotten the password and then repeated the procedure above, but I receive the same error.

1 3 657
3 REPLIES 3

Not applicable

Hi @cmoser , How many openldap nodes do you have?

Just one in that Planet

Not applicable

Hi,

The problem is this case was related to the fact a different ldapmodify command was being invoked. So the solution was to update:

/opt/apigee/apigee-openldap/lib/actions/change-ldap-password

to use the standard /usr/bin/ldapmodify command.