Crowd - Sun Directory Server - No Permission for Self-Service LDAP Password Update

Jason Tolotta August 15, 2011

I have Crowd 2.3.2 deployed on a CentOS 6 server using the Embedded Database.

I currently added a Sun Directory Server using the LDAP Connector.

The LDAP Server Users are synched.

If I log into Crowd using the Self-Service of an LDAP user and proceed to Change Password a message is displayed stating:

You do not have permission to change your password.


On the Sun Directory Server I have indicated in the Password Policy that users can change their password.

On the Crowd side I have set the Sun Directory Server Connector as follows:

Type: Sun Directory Server Enterprise Edition

URL: ldap://my.server.com:389/

Base DN: dc=my,dc=server,dc=com

I am not sure what else is needed?

1 answer

1 accepted

1 vote
Answer accepted
Tiago Comasseto
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
February 27, 2013

Hi there,

I see that you are connecting to the LDAP using the ldap protocol, instead of ldaps (URL: ldap://my.server.com:389), as per what I know you need an SSL connection to perform password changes into the LDAP (it seems to be a restriction from the LDAP server, not Crowd itself).

You may try setting your LDAP directory in Crowd over SSL and see if it solves this issue. You can use this documentation as a guide line for this configuration.

Cheers

Suggest an answer

Log in or Sign up to answer
TAGS
AUG Leaders

Atlassian Community Events