Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Updating AD password using cfldap

Status
Not open for further replies.
TruthInSatire

TruthInSatire

Programmer
Aug 12, 2002
2,964
US
I'm trying to provide the ability for our users to change their domain password from our website.

The website is located in the DMZ and is not part of the domain.

I have sucessfully connected and run several LDAP queries. I can authenticate via ldap and all is well.

When I try to change a password I get various errors depending on the code.

I'm not sure if the following attribut is even correct. I've seen it used in a php example.

<CFLDAP ACTION="MODIFY"
MODIFYTYPE="replace"
port = "636"
server = "#serverIP#"
username = "#domain#\#adminuser#"
password = "#adminpassword#"
ATTRIBUTES="unicodepwd=#newtestpassword#"
DN="#ldapDNLookup.DN#">

this code provides the following error:
An error has occured while trying to execute modify :Request: 1 cancelled.
One or more of the required attributes may be missing/incorrect or you do not have permissions to execute this operation on the server

if i don't specify a secure port i get this error:
An error has occured while trying to execute modify :[LDAP: error code 53 - 0000001F: SvcErr: DSID-031A0FC0, problem 5003 (WILL_NOT_PERFORM), data 0 ].

Is this possible to do with CFLDAP

We've heard that a million monkeys at a million keyboards could produce the complete works of Shakespeare; now, thanks to the Internet, we know that is not true.
 
Sort by date Sort by votes
I'm not sure about a password, but I know that it's possible to update other AD info. I think passwords may take some type of special encryption and windows may keep that off limits.

Try this, see if it helps. There's an example on updating AD under the "Employee Self-Service Example" heading.

Hope This Helps!

ECAR
ECAR Technologies

"My work is a game, a very serious game." - M.C. Escher
 
Upvote 0 Downvote
Hey buddy, good to hear from you.

I've read this. in fact, I think i've read everything online about cf and ldap.

I can actually modify other fields sucessfully. I hadn't tried it before i posted but it works perfectly. I get the exact same error if i specify port 636 when updating my phone number, so i'm working with the other network people to see what the deal is with ssl.

I found a script that will encode the password. at least, i think it does. I've found 2 fields that can be updated. I can't find much out about them though. I think 1 requires a formated entry, but the other one doesn't. right now i'm just going to wait until i see what's up with ssl.

unless someone else has any other ideas.

We've heard that a million monkeys at a million keyboards could produce the complete works of Shakespeare; now, thanks to the Internet, we know that is not true.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

RBGraphics
  • Locked
  • Question
Adobe Portfolio
Replies
0
Views
594
RBGraphics
RBGraphics
LyndonOHRC
  • Locked
  • Question
Need help using ImageCrop()
Replies
1
Views
238
LyndonOHRC
LyndonOHRC
Mike Lewis
  • Locked
  • Question
Using Dreamweaver to maintain a site not created in Dreamweaver
Replies
2
Views
706
Mike Lewis
Mike Lewis
CTR
  • Locked
  • Question
ColdFusion Administrator - Secure DNS
Replies
2
Views
288
CTR
CTR
cfuser10
  • Locked
  • Question
CFLDAP and Read only access to pages
Replies
1
Views
267
TruthInSatire
TruthInSatire

Part and Inventory Search

Sponsor

Back
Top