I don’t know if it’s a bug or if it’s ment to be so, but if a user hasn’t ssh access enabled, it’s not possible to login into cockpit to change his password. I think it has to with terminal, but a normal user do not has to have terminal access only to change his password.
IMO a user shold be able to do, also he has no ssh access.
Can you please explain this behaviour @davidep or @giacomo ?
I’m not aware that it’s been tried with remote account providers. I use it myself for local LDAP, and others have successfully tested it with local AD. I would expect it should work with remote LDAP, though probably not using the email tokens. Remote AD, no idea there.