[Bug 1047217] New: Authentication Server, not possible to enable password policies
http://bugzilla.opensuse.org/show_bug.cgi?id=1047217 Bug ID: 1047217 Summary: Authentication Server, not possible to enable password policies Classification: openSUSE Product: openSUSE Distribution Version: Leap 42.3 Hardware: x86-64 OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: YaST2 Assignee: yast2-maintainers@suse.de Reporter: rmtron@gmail.com QA Contact: jsrain@suse.com Found By: --- Blocker: --- It is not possible to enable the password policies in the LDAP server configuration. The Kerberos server is not running. The operation aborts with the message: Other (e.g., implementation specific) error: <olcAccess> handler exited with 1 I have detected the same problem in Leap 42.2. I need to change this setting on my server, is there any workaround? -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1047217 http://bugzilla.opensuse.org/show_bug.cgi?id=1047217#c2 Howard Guo <hguo@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution|--- |FIXED --- Comment #2 from Howard Guo <hguo@suse.com> --- Here is the solution, verified to be working by Reidar: The OpenLDAP server package on Leap appears to not load password policy module by default. Try running the following command to instruct server to load the module: ldapmodify -H ldapi:/// -Y EXTERNAL And then enter: dn: cn=module{0},cn=config changetype: modify add: olcModuleLoad olcModuleLoad: ppolicy.so If it was successful, there should be an output line: modifying entry "cn=module{0},cn=config"
From there, Yast authentication server configuration should work properly.
-- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1047217 http://bugzilla.opensuse.org/show_bug.cgi?id=1047217#c3 Reidar Tronstad <rmtron@gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|FIXED |--- --- Comment #3 from Reidar Tronstad <rmtron@gmail.com> --- The workaround works fine but the problem is not resolved, Yast still does not load the password policy module in Leap 42.3. -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1047217 http://bugzilla.opensuse.org/show_bug.cgi?id=1047217#c4 Reidar Tronstad <rmtron@gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |niklas.kuehl@tuhh.de --- Comment #4 from Reidar Tronstad <rmtron@gmail.com> --- *** Bug 1010943 has been marked as a duplicate of this bug. *** -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com