You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I patched plugins/password/drivers/ldap_simple.php with the following to make this work with ActiveDirectory (Probably should not be applied as is, as I imagine this should be limited to ActiveDirectory environments.
Also unrelated to the above (so out of scope of this ticket), but I saw mentions that ActiveDirectory should hve LDAP_OPT_REFERRALS set to 0
ldap_set_option($ds, LDAP_OPT_REFERRALS, 0); - all my testing had that set
What browser(s) are you seeing the problem on?
Firefox
What version of PHP are you using?
8.0
What version of Roundcube are you using?
1.6.8
JavaScript errors
No response
PHP errors
[23-Jan-2024 11:46:11 Canada/Pacific] PHP Warning: ldap_modify(): Modify: Insufficient access in /home/webapps/roundcube-bravenet/shared/www/roundcubemail.20240123095600/plugins/password/drivers/ldap_simple.php on line 92
The text was updated successfully, but these errors were encountered:
Prerequisites
Describe the issue
When attempting to change the ldap password for a user, we get "Insufficient access" when using ldap_simple.
Reviewing https://learn.microsoft.com/en-us/openspecs/windows_protocols/ms-adts/6e803168-f140-4d23-b2d3-c3a8ab5917d2, It looks like it is required to do a REMOVE and ADD ldap operation when you are running as a non admin user.
https://gist.githubusercontent.com/aysiu/0d8ddfa812251f74e5aed65d197cfadb/raw/2c680d7c616d6198182a8f3247e4eae67ca9ae40/ChangeADPassword.php - also has a working example of how this can work.
I patched plugins/password/drivers/ldap_simple.php with the following to make this work with ActiveDirectory (Probably should not be applied as is, as I imagine this should be limited to ActiveDirectory environments.
Also unrelated to the above (so out of scope of this ticket), but I saw mentions that ActiveDirectory should hve LDAP_OPT_REFERRALS set to 0
ldap_set_option($ds, LDAP_OPT_REFERRALS, 0); - all my testing had that set
What browser(s) are you seeing the problem on?
Firefox
What version of PHP are you using?
8.0
What version of Roundcube are you using?
1.6.8
JavaScript errors
No response
PHP errors
[23-Jan-2024 11:46:11 Canada/Pacific] PHP Warning: ldap_modify(): Modify: Insufficient access in /home/webapps/roundcube-bravenet/shared/www/roundcubemail.20240123095600/plugins/password/drivers/ldap_simple.php on line 92
The text was updated successfully, but these errors were encountered: