When I login with last day password, all ok. But when I locked screen, I can't unlock it, receive error «Invalid password, please try again».
I think, this bug more globally — «unity-panel-service --lockscreen-mode» does not have function for changing user password.
How to reproduce:
You need working LDAP-server and Ubuntu with LDAP client. My client, Ubuntu 14.04:
Count todays number:
echo $(($(date --utc --date "$1" +%s)/86400))
For example, 16587.
In LDAP, add user account with attribute shadowMax=10 and shadowLastChange=16577.
Try to login in Ubuntu. All ok. No errors, no messages.
Now lock the screen (Ctrl+Alt+L).
Try to unlock screen — you can't. You see error «Invalid password, please try again».
Workaround:
Login to guest account and change user to myself.
When I login with last day password, all ok. But when I locked screen, I can't unlock it, receive error «Invalid password, please try again». panel-service --lockscreen-mode» does not have function for changing user password.
I think, this bug more globally — «unity-
How to reproduce:
You need working LDAP-server and Ubuntu with LDAP client. My client, Ubuntu 14.04:
cat <<EOF | config/ dblogin boolean false config/ dbrootlogin boolean false config/ ldapns/ ldap-server string ldap://ldap/ config/ ldapns/ ldap_version select 3 config/ move-to- debconf boolean true config/ ldapns/ base-dn string dc=example,dc=com ldapd/nsswitch multiselect group, passwd, shadow
ldap-auth-config ldap-auth-
ldap-auth-config ldap-auth-
ldap-auth-config ldap-auth-
ldap-auth-config ldap-auth-
ldap-auth-config ldap-auth-
ldap-auth-config ldap-auth-
nslcd nslcd/ldap-base string dc=example,dc=com
nslcd nslcd/ldap-uris string ldap://ldap/
libnss-ldapd libnss-
EOF
sudo debconf- set-selections debconf_ answers_ ldap.dat
sudo apt-get install libnss-ldapd libpam-ldap nss-updatedb libnss-db libpam-ccreds nscd libpam-cracklib
And create file /usr/share/ pam-configs/ mkhomedir:
Name: activate mkhomedir
Default: yes
Priority: 900
Session-Type: Additional
Session:
required pam_mkhomedir.so umask=0022 skel=/etc/skel
Then run:
sudo pam-auth-update
Count todays number: e=16577.
echo $(($(date --utc --date "$1" +%s)/86400))
For example, 16587.
In LDAP, add user account with attribute shadowMax=10 and shadowLastChang
Try to login in Ubuntu. All ok. No errors, no messages.
Now lock the screen (Ctrl+Alt+L).
Try to unlock screen — you can't. You see error «Invalid password, please try again».
Workaround:
Login to guest account and change user to myself.