Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Giving password reset access to non-root user, in LDAP
Top Forums UNIX for Beginners Questions & Answers Giving password reset access to non-root user, in LDAP Post 303039414 by Neo on Thursday 3rd of October 2019 09:35:29 PM
Old 10-03-2019
You can build a wrapper to permit people to reset user passwords without any need to expose underlying credentials.

There are myriad ways to do this and these kind of "wrapper apps" are very common, often written in conjunction with additional custom security and logging.
This User Gave Thanks to Neo For This Post:
ron323232
 

10 More Discussions You Might Find Interesting

1. Solaris

LDAP user password reset script

Hey all, I'm looking for a script to auto-generate a password for users that forget their password. Currently, we are using a perl script (with cgi-bin) where users update their password, but would like to add to this and make it so that the users can also request a password reset and a... (1 Reply)
Discussion started by: em23
1 Replies

2. Cybersecurity

How to reset root password of old Unix System V

Hi all, This is first time I met unix in my life. I purchased old Scanning Elecron Microscope which came with 486/33MHz PC running Unix System V, ver. 3.6. The one simple user name/passw is known so I can boot and login. But can not shutdown! It asks root or su passw. I'm very sensitive not to... (6 Replies)
Discussion started by: 82026
6 Replies

3. UNIX for Advanced & Expert Users

Not able to reset mysql root password

Hi, My root password for mysql has some problem as it dosent allow me to login.... all commands to reset it failed. so I removed mysql yum remove mysql and installed it by yum install mysql mysql-devel mysql-server and it installed fine I gave chkconfig --levels 235 mysqld on... (1 Reply)
Discussion started by: viji19812001
1 Replies

4. Solaris

changing user password as root on LDAP client SOl10/u7

I'm fairly inexperienced with LDAP and DSEE so to build my skills I installed directory server in the global zone of my Sol 10/u7 machine and created a zone to use as a client. For some reason when I try to change a users password as root (in the client zone) with passwd -r ldap I am prompted for... (1 Reply)
Discussion started by: ilikecows
1 Replies

5. Red Hat

Giving access to non root users to run application

Hi All, I have created an RPM installer and installed it via ROOT user & which works fine on Red Hat. But the problem oocurs when a non root users try to run that application (from their account), it never got executed (being it has the execute permission i.e. chmod a+x somefile.sh). I want... (6 Replies)
Discussion started by: jw_amp
6 Replies

6. UNIX for Advanced & Expert Users

How to reset the ldap root password?

How to change the ldap root password. I have generated the password by using "slappasswd " command, but In my root machine "/etc/ldap/sldap.d" file is not there. instead of the file sldap.d directory only is there. please help me...? (0 Replies)
Discussion started by: ungalnanban
0 Replies

7. Red Hat

Fedora reset root password

I need some help with Fedora. I am trying to reset the root password. When I tried to login I was not able to. I kept getting the authentication failure message. I got the password reset success message. passwd: all authentication tokens updated successfully. I then thought maybe the root... (6 Replies)
Discussion started by: cokedude
6 Replies

8. Solaris

How to reset forgotten mysql root password?

Hi All, I just found one thread on this forum on this subject here: Forgot MYSQL password root | Unix Linux Forums | Web Development but unfortunately the issue was not resolved. I have the same problem with the same error message. The background is that I built a Solaris 11 x86 server... (11 Replies)
Discussion started by: hicksd8
11 Replies

9. UNIX for Advanced & Expert Users

One user to su to another without allowing root access and password

Hello Gurus, I want One user to su to another without allowing root access and password. I want to run a specific command as below from user am663: --------------------------------------------------------- sudo -u appsprj4 /home/appsrj4/scripts/start_apache.sh ------------------- But... (6 Replies)
Discussion started by: pokhraj_d
6 Replies

10. UNIX for Beginners Questions & Answers

Linux root Password Reset

Hi , I ve a question about the Linux system root password change. Which can be done using grub menu without inputting the old password.:confused: So If anybody can change the root password without any password and then how it is secure. Anybody can manipulate the other user using the... (6 Replies)
Discussion started by: pradyumnajpn10
6 Replies

LEARN ABOUT SUSE

net::ldap::extension::setpassword

Net::LDAP::Extension::SetPassword(3)			User Contributed Perl Documentation		      Net::LDAP::Extension::SetPassword(3)

NAME

       Net::LDAP::Extension::SetPassword - LDAPv3 Modify Password extension object

SYNOPSIS

	use Net::LDAP;
	use Net::LDAP::Extension::SetPassword;

	$ldap = Net::LDAP->new( "ldap.mydomain.eg" );

	$ldap->bind('cn=Joe User,cn=People,dc=mydomain,dc=eg",
		    password => 'oldPassword');

	$mesg = $ldap->set_password( oldpasswd => 'oldPassword' );

	die "error: ", $mesg->code(), ": ", $mesg->error()  if ($mesg->code());

	print "changed your password to", $mesg->gen_password() , "
";

DESCRIPTION

       "Net::LDAP::Extension::SetPassword" implements the "Modify Password" extended LDAPv3 operation as described in RFC 3062.

       It implements no object by itself but extends the Net::LDAP object by another method:

METHODS

       set_password ( OPTIONS )
	   Set the password for a user.

	   OPTIONS is a list of key/value pairs. The following keys are recognized:

	   user
	       If present, this option contains the octet string representation of the user associated with the request.  Depending on how users
	       are identified in the directory this string may or may not be a DN according to RFC 2253.

	       If this option is not present, the request acts up upon the password of the user currently associated with the LDAP session.

	   oldpasswd
	       This option, if present, must contain the current password of the user for whom this operation is performed.

	       It depends on the server's implementation in which cirumstances this option is allowed to be missing.

	   newpasswd
	       If present, this option contains the desired password for the user for whom the operation is performed.

	       Depending on the server's implementation this option may be required by the LDAP server.

       gen_password ( )
	   Return the password generated by the server in response to the "set_password()" call when applicable. The server will not generate a
	   new password if "newpasswd" was passed to "set_password()".

	   This method is a method of the Net::LDAP::Message response object returned in reply to "set_password()" in case the "set_password()"
	   call succeeded.

	   By this method the caller can query for the value of the password in case he did not call "set_password()" with the "newpasswd" option.

SEE ALSO

       Net::LDAP, Net::LDAP::Extension

AUTHOR

       Graham Barr <gbarr@pobox.com>, documentation by Peter Marschall <peter@adpm.de>.

       Please report any bugs, or post any suggestions, to the perl-ldap mailing list <perl-ldap@perl.org>

COPYRIGHT

       Copyright (c) 2002-2004 Graham Barr. All rights reserved. This program is free software; you can redistribute it and/or modify it under the
       same terms as Perl itself.

perl v5.12.1							    2010-03-12				      Net::LDAP::Extension::SetPassword(3)
All times are GMT -4. The time now is 11:16 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy