Allow Password Changes With LDAP integration

Nextcloud version (eg, 20.0.5): 22.2.3
Operating system and version (eg, Ubuntu 20.04): Debian 10.
Apache or nginx version (eg, Apache 2.4.25): Nginx 1.14.2
PHP version (eg, 7.4): PhP 7.3

The issue you are facing:
I am trying to get rid of the app « Write support for LDAP » as this is the sole thing that prevents me from migrating to NC 23. However, passwords can no longer be changed by users when I disable the app, even though the base LDAP app has the option to do so.

What works:

  1. LDAP is functionnal and accessible from NC on port 339.
  2. LDAPs is functionnal on port 636, but fails to be accessed by NC (« configuration fails »).
  3. The user employed for LDAP connection has the credentials to edit LDAP entries in slapd.conf:
access to attrs=userPassword,shadowLastChange
        by dn="@ADMIN@" write
        by anonymous auth
        by dn="cn=USER,ou=people,dc=example,dc=com" write
        by self write
        by * none
  1. With write support for LDAP activated, users can change their password.
  2. They cannot without.

Is this the first time you’ve seen this error? : yes

Steps to replicate it: am not really certain.

The output of your Nextcloud log in Admin > Logging: none apparent.

I will be happy to provide config.php details or nginx logs if deemed necessary (but are they?).

Thanks in advance to anyone who can help.



1 Like