Univention Bugzilla – Bug 43852
Test case samba4/40password-policies fails in UCS 4.2
Last modified: 2017-04-04 18:28:43 CEST
The test case 51_samba4/40password-policies fails in UCS 4.2. Samba changed the return value: root@master421:~# /usr/share/ucs-test/51_samba4/40password-policies -f ----create user info 2017-03-14 17:01:00 create user o78cau4k Object created: uid=o78cau4k,cn=users,dc=deadlock42,dc=intranet debug 2017-03-14 17:01:01 Waiting for replication... OK: replication complete (nid=2092 lid=2092) info 2017-03-14 17:01:01 replication complete. Waiting for DRS replication for (sAMAccountName=o78cau4k): . DRS replication took 2 seconds ----set pwdChangeNextLogin=1 ----wait until it is recognized in samba that the user has been modified -----Log in without changing the password Failed to bind - LDAP error 49 LDAP_INVALID_CREDENTIALS - <8009030C: LdapErr: DSID-0C0904DC, comment: AcceptSecurityContext error, data 773, v1db1> <> Failed to connect to 'ldap://localhost' with backend 'ldap': LDAP error 49 LDAP_INVALID_CREDENTIALS - <8009030C: LdapErr: DSID-0C0904DC, comment: AcceptSecurityContext error, data 773, v1db1> <> Failed to connect to ldap://localhost - LDAP error 49 LDAP_INVALID_CREDENTIALS - <8009030C: LdapErr: DSID-0C0904DC, comment: AcceptSecurityContext error, data 773, v1db1> <> error 2017-03-14 17:01:05 Expected return value "NT_STATUS_PASSWORD_MUST_CHANGE" ----Changing the password error 2017-03-14 17:01:05 **************** Test failed above this line (1) **************** Changed password OK ----Checking password: Domain=[DEADLOCK42] OS=[] Server=[] info 2017-03-14 17:01:07 remove user o78cau4k Object removed: uid=o78cau4k,cn=users,dc=deadlock42,dc=intranet debug 2017-03-14 17:01:07 user o78cau4k removed info 2017-03-14 17:01:07 checking whether the user o78cau4k is really removed debug 2017-03-14 17:01:07 user o78cau4k does not exist Starting 1 ucs-test at 2017-03-14 17:01:07 to /dev/null Test whether UDM attribute pwdChangeNextLogin is honored................................................................................................ Test failed root@master421:~#
r77714: * 51_samba4/40password-policies: Samba 4 changed the LDAP return value for an expired password (Bug #43852)
Did really samba changed the return value from "NT_STATUS_PASSWORD_MUST_CHANGE" to LDAP_INVALID_CREDENTIALS? Or is this caused by Bug #36215?
(In reply to Florian Best from comment #2) > Did really samba changed the return value from > "NT_STATUS_PASSWORD_MUST_CHANGE" to LDAP_INVALID_CREDENTIALS? Or is this > caused by Bug #36215? Seems not.
Looks good now.
Yes.
UCS 4.2 has been released: https://docs.software-univention.de/release-notes-4.2-0-en.html https://docs.software-univention.de/release-notes-4.2-0-de.html If this error occurs again, please use "Clone This Bug".