Uploaded image for project: 'PUBLIC - Liferay Portal Community Edition'
  1. PUBLIC - Liferay Portal Community Edition
  2. LPS-40847

User cannot change own password with LDAP (Microsoft AD)

    Details

      Description

      We are using MS AD as our LDAP provider with LR. We have set ldap.import.user.password.enabled=false (AD would not permit reading password attribute anyway). Other relevant settings considering ldap auth are:
      auth.pipeline.enable.liferay.check=false
      ldap.auth.enabled=true
      ldap.auth.required=true

      Changing user password as admin via CP works but when user tries to changes his own password it fails in PwdAuthenticator where LR tries to verify users current password against LR DB which obviously does not match.

      The suggested fix would be to add a check for auth.pipeline.enable.liferay.check=false in PwdAuthenticator#authenticate and delegate authentication to ldap.

        Attachments

          Activity

            People

            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:
                Days since last comment:
                5 years, 51 weeks, 4 days ago

                Packages

                Version Package