#346 Root can no longer set local domain user's password
Closed: Fixed None Opened 14 years ago by jgalipea.

Description[[BR]]
Root no longer able to set local domain user's password.[[BR]]

Version[[BR]]
sssd-1.0.0-0.2009121809git6b94e84.fc11.i586[[BR]]

Steps to Reproduce[[BR]]
1. Log in as root[[BR]]

  1. install sssd and configure local domain[[BR]]
  2. add a local user[[BR]]
  3. assign user password[[BR]]
    # passwd <userid>[[BR]]

RESULT:[[BR]]

[root@dhcp-100-3-184 home]# passwd userid
Changing password for user userid.
passwd: Authentication token manipulation error

/var/log/secure:[[BR]]

Dec 18 13:12:00 localhost su: pam_sss(su-l:session): authentication success; logname=root uid=0 euid=0 tty=pts/0 ruser=root rhost= user=mmouse
Dec 18 13:12:03 localhost passwd: pam_unix(passwd:chauthtok): user "mmouse" does not exist in /etc/passwd
Dec 18 13:12:03 localhost passwd: pam_sss(passwd:chauthtok): authentication failure; logname=root uid=0 euid=0 tty=pts/0 ruser= rhost= user=mmouse
Dec 18 13:12:03 localhost passwd: pam_sss(passwd:chauthtok): received for user mmouse: 4 (System error)

Fields changed

description: '''Description'''[[BR]]
Root no longer able to set local domain user's password.[[BR]]

'''Version'''[[BR]]
sssd-1.0.0-0.2009121809git6b94e84.fc11.i586[[BR]]

'''Steps to Reproduce'''[[BR]]
1. Log in as root
2. install sssd and configure local domain[[BR]]
3. add a local user[[BR]]
4. assign user password[[BR]]
# passwd <userid>[[BR]]

RESULT:[[BR]]

{{{
[root@dhcp-100-3-184 home]# passwd userid
Changing password for user userid.
passwd: Authentication token manipulation error
}}}

/var/log/secure:[[BR]]

{{{
Dec 18 13:12:00 localhost su: pam_sss(su-l:session): authentication success; logname=root uid=0 euid=0 tty=pts/0 ruser=root rhost= user=mmouse
Dec 18 13:12:03 localhost passwd: pam_unix(passwd:chauthtok): user "mmouse" does not exist in /etc/passwd
Dec 18 13:12:03 localhost passwd: pam_sss(passwd:chauthtok): authentication failure; logname=root uid=0 euid=0 tty=pts/0 ruser= rhost= user=mmouse
Dec 18 13:12:03 localhost passwd: pam_sss(passwd:chauthtok): received for user mmouse: 4 (System error)
}}}

=> '''Description'''[[BR]]
Root no longer able to set local domain user's password.[[BR]]

'''Version'''[[BR]]
sssd-1.0.0-0.2009121809git6b94e84.fc11.i586[[BR]]

'''Steps to Reproduce'''[[BR]]
1. Log in as root[[BR]]

  1. install sssd and configure local domain[[BR]]
  2. add a local user[[BR]]
  3. assign user password[[BR]]
    # passwd <userid>[[BR]]

RESULT:[[BR]]

{{{
[root@dhcp-100-3-184 home]# passwd userid
Changing password for user userid.
passwd: Authentication token manipulation error
}}}

/var/log/secure:[[BR]]

{{{
Dec 18 13:12:00 localhost su: pam_sss(su-l:session): authentication success; logname=root uid=0 euid=0 tty=pts/0 ruser=root rhost= user=mmouse
Dec 18 13:12:03 localhost passwd: pam_unix(passwd:chauthtok): user "mmouse" does not exist in /etc/passwd
Dec 18 13:12:03 localhost passwd: pam_sss(passwd:chauthtok): authentication failure; logname=root uid=0 euid=0 tty=pts/0 ruser= rhost= user=mmouse
Dec 18 13:12:03 localhost passwd: pam_sss(passwd:chauthtok): received for user mmouse: 4 (System error)
}}}

This is a regression. This must be fixed before releasing 1.0.

component: SSSD => PAM
milestone: NEEDS_TRIAGE => SSSD 1.0
owner: somebody => sgallagh
priority: major => blocker
status: new => assigned
tests: 0 => 1
version: 0.99.1 => master

Fixed by 0c3c382

fixedin: => 1.0.0
resolution: => fixed
status: assigned => closed

Fields changed

tests: 1 => 0
testsupdated: 0 => 1

Fields changed

rhbz: => 0

Metadata Update from @jgalipea:
- Issue assigned to sgallagh
- Issue set to the milestone: SSSD 1.0

7 years ago

SSSD is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in SSSD's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/SSSD/sssd/issues/1388

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Login to comment on this ticket.

Metadata