← Back to team overview

dx-packages team mailing list archive

[Bug 1323278] Re: Ubuntu Lock Screen always asks to change password when using LDAP Auth

 

Hi,

I honestly thought I had anonymous read access but it turns out SASL is
involved.  As a test:

ldapsearch -b 'dc=test,dc=local' -H ldap://ldap001 cn=waynemerricks

I get:

SASL/DIGEST-MD5 authentication started
Please enter your password:
ldap_sasl_interactive_bind_s: Invalid credentials (49)
  additional info: SASL(-13): user not found: no secret in database

But if I do:

ldapsearch -x -b 'dc=test,dc=local' -H ldap://ldap001 cn=waynemerricks

It works fine.  Just trying to figure out how to force simple auth.  The
login screen must do simple auth somehow but the lock screen certainly
doesn't.

-- 
You received this bug notification because you are a member of DX
Packages, which is subscribed to unity in Ubuntu.
Matching subscriptions: dx-packages
https://bugs.launchpad.net/bugs/1323278

Title:
  Ubuntu Lock Screen always asks to change password when using LDAP Auth

Status in Unity:
  Incomplete
Status in “unity” package in Ubuntu:
  Incomplete

Bug description:
  After setting up LDAP authentication for user login.  Users can log in
  fine but as soon as the lock screen is activated, the user has to
  change their password before they can unlock the screen.

  First prompt is: Enter your password
  Then: Enter your LDAP Password
  Then: Enter new password
  Finally: Confirm (Wording is paraphrased)

  You can reboot and login without changing the password it is just the
  lock screen.

  Obviously what should happen is that you enter your password and carry
  on with life.

  Guide for LDAP auth was cobbled together from the community page which
  references Ubuntu 7.04 and 10.04 and some other googling.  It
  effectively boils down to:

  sudo apt-get install libnss-ldap libpam-ldap nscd

  Then editing /etc/nsswitch.conf and /etc/pam.d/common-session to get
  the user home directories created from skel.

  I then amend the lightdm config to allow manual logins and disable the
  guest account.

  Its entirely possible I've configured something incorrectly however
  I'm at a loss why login works fine but the lock screen always
  complains.  Any ideas?

  lsb_release -rd : Description: Ubuntu 14.04 LTS / Release: 14.04

To manage notifications about this bug go to:
https://bugs.launchpad.net/unity/+bug/1323278/+subscriptions


References