使用unboundid在LDAP中更改用戶密碼

Question

我試圖使用下面的代碼更改LDAP中的用戶密碼，我不是LDAP的管理員，因此我與具有ou = systemusers的用戶建立連接它可以創建用戶，並將用戶添加到組中。我知道舊密碼的使用，將做改變

PasswordModifyExtendedRequest passwordModifyRequest = 
     new PasswordModifyExtendedRequest(
      "uid=test.user,ou=People,dc=example,dc=com", // The user to update 
      (String) null, // The current password for the user. 
      (String) null); // The new password. null = server will generate 

PasswordModifyExtendedResult passwordModifyResult; 
try 
{ 
    passwordModifyResult = (PasswordModifyExtendedResult) 
     connection.processExtendedOperation(passwordModifyRequest); 
    // This doesn't necessarily mean that the operation was successful, since 
    // some kinds of extended operations return non-success results under 
    // normal conditions. 
} 
catch (LDAPException le) 
{ 
    // For an extended operation, this generally means that a problem was 
    // encountered while trying to send the request or read the result. 
    passwordModifyResult = new PasswordModifyExtendedResult(
     new ExtendedResult(le)); 
} 

LDAPTestUtils.assertResultCodeEquals(passwordModifyResult, 
     ResultCode.SUCCESS); 
String serverGeneratedNewPassword = 
     passwordModifyResult.getGeneratedPassword(); 

但我總是得到這樣的結果。

PasswordModifyExtendedResult(resultCode=50 (insufficient access rights), messageID=4, diagnosticMessage='You do not have sufficient privileges to perform password reset operations') 

如何更改用戶密碼瞭解舊密碼？

Answer 1

您必須以具有足夠特權執行操作的用戶登錄，或者更常用作爲用戶自己使用舊密碼進行登錄，當然這是額外的完整性檢查。否則，LDAP服務器配置錯誤。