Account Provider: nethserver-directory (OpenLDAP), but I think it also happens with nethserver-dc
- Login to server-manager as an user, using short-hand form
- Change user password:
Task completed with errors
# (exit status )
/var/log/messages:
Jan 17 22:12:10 test1 httpd: [NOTICE] NethServer\Tool\PamValidator: additional userx groups: office. Output: array (#012 0 => '["office"]',#012)
Jan 17 22:12:10 test1 httpd: [NOTICE] Nethgui\Authorization\User: user `userx` authenticated
Jan 17 22:12:27 test1 httpd: [NOTICE] NethServer\Tool\ChangePassword: userx is changing password to Oneself (userx). Unprivileged user can set his own password -- #1580 (score = 2.00)
Jan 17 22:12:28 test1 httpd: [NOTICE] NethServer\Tool\PamValidator: additional userx groups: office. Output: array (#012 0 => '["office"]',#012)
Jan 17 22:12:29 test1 esmith::event[2162]: Event: password-modify userx /tmp/ng-20rzLy
Jan 17 22:12:31 test1 esmith::event[2162]: passwd: Authentication token manipulation error
Jan 17 22:12:31 test1 esmith::event[2162]: Changing password for user userx.
Jan 17 22:12:31 test1 esmith::event[2162]: Action: /etc/e-smith/events/password-modify/S25password-set FAILED: 1 [2.133464]
Jan 17 22:12:31 test1 esmith::event[2162]: [WARN] Skipping user userx, it doesn't belong to a domain.
Jan 17 22:12:31 test1 esmith::event[2162]: Action: /etc/e-smith/events/password-modify/S30nethserver-directory-password-set SUCCESS [0.027452]
Jan 17 22:12:31 test1 esmith::event[2162]: [WARNING] Skipping user userx, it doesn't belong to a domain.
Jan 17 22:12:31 test1 esmith::event[2162]: Action: /etc/e-smith/events/password-modify/S40nethserver-directory-user-unlock SUCCESS [0.034099]
Jan 17 22:12:32 test1 esmith::event[2162]: Action: /etc/e-smith/events/password-modify/S90password-cleanup SUCCESS [0.18939]
Jan 17 22:12:32 test1 esmith::event[2162]: Event: password-modify FAILED
/var/log/secure:
Jan 17 22:12:28 test1 perl: pam_sss(system-auth:auth): authentication success; logname= uid=0 euid=0 tty= ruser= rhost= user=userx
Jan 17 22:12:28 test1 sudo: srvmgr : TTY=unknown ; PWD=/usr/share/nethesis/nethserver-manager ; USER=root ; COMMAND=/usr/libexec/nethserver/list-user-membership -t 5 -s userx
Jan 17 22:12:29 test1 sudo: srvmgr : TTY=unknown ; PWD=/usr/share/nethesis/nethserver-manager ; USER=root ; COMMAND=/sbin/e-smith/signal-event password-modify userx /tmp/ng-20rzLy
Jan 17 22:12:29 test1 passwd: pam_unix(passwd:chauthtok): user "userx" does not exist in /etc/passwd
Jan 17 22:12:29 test1 passwd: pam_sss(passwd:chauthtok): Authentication failed for user userx: 6 (Permission denied)
Jan 17 22:12:29 test1 passwd: pam_sss(passwd:chauthtok): User info message: Password reset by root is not supported.
The same steps work (most of the times) when using the long user format (user@domain.tld
).