Mapviewer admin change password

Similar Messages

• CMC Admin Change Password failure

  Hi,
  Login into CMC for Administrator BOXI3.1 is no longer possible. The Administrator was given 'User must change password at next logon'.
  The logon for an Administrator in a new session is ok. But password change in the subsequent screen fails with msg "You do not have permission to perform the requested action. Please contact the system administrator for details. Please re-enter your password."
  There is only one Administrator in BOXI3.1. Please suggest a solution if any. Is there any reset password script on the command prompt?
  Regards,
  Neonevin.

  Look at the post below  for a workaround on how to reset the admin password to a blank password (Use at own risk)
  CMC asterisks in password field
  Regards,
  Stratos

• User cannot change password option is automatically getting unchecked while giving domain admin rights

  user cannot change password option is automatically getting unchecked while giving domain admin rights

  Greetings!
  "Domain Admins" falls into the category of protected groups and it is included in ADminSDHolder process. It is normal and was designed in order to prevent the modification to these privileged groups. More information on the link below:
  AdminSDHolder, Protected Groups and SDPROP
  Regards.
  Mahdi Tehrani   |  
    |  
  www.mahditehrani.ir
  Please click on Propose As Answer or to mark this post as
  and helpful for other people.
  This posting is provided AS-IS with no warranties, and confers no rights.
  How to query members of 'Local Administrators' group in all computers?

• Disable prompt to change password for local non-admin account

  Hi there, I have a special-case laptop image running Windows 7 Enterprise. This one will not be on the domain--configured as a standalone workgroup only. I have three local accounts on it:
  1) Tech account with admin privs and password protected
  2) Teacher account with admin privs and password protected
  3) Kindergarten student account with regular user privs and no password at all
  For some reason, after Sysprep, when the student and teacher clicks their icon to logon, Windows always prompts them to change the password. I want to disable that. I have the following in my unattend.xml file which should take care of this, based on what
  I've read here. Still getting prompted to change password though. Any ideas what's missing?
  Thanks,
  Sir_Timbit
  <component name="Microsoft-Windows-Shell-Setup" .....
              <FirstLogonCommands>
                  <SynchronousCommand wcm:action="add">
                      <CommandLine>wmic useraccount where &quot;name=&apos;Student&apos;&quot; set PasswordExpires=FALSE&lt;/CommandLine&gt;</CommandLine>
                      <Description>Student password never expires...</Description>
                      <Order>2</Order>
                  </SynchronousCommand>
                  <SynchronousCommand wcm:action="add">
                      <CommandLine>net accounts /maxpwage:unlimited</CommandLine>
                      <Description>Disable expired local user account passwords</Description>
                      <Order>3</Order>
                      <RequiresUserInput>true</RequiresUserInput>
                  </SynchronousCommand>
                  <SynchronousCommand wcm:action="add">
                      <CommandLine>wmic useraccount where &quot;name=&apos;Staff&apos;&quot; set PasswordExpires=FALSE&lt;/CommandLine&gt;</CommandLine>
                      <Description>Staff password never expires</Description>
                      <Order>1</Order>
                  </SynchronousCommand>
              </FirstLogonCommands>

  For some reason my paste garbled up the unattend.xml file. It should read:
              <FirstLogonCommands>
                  <SynchronousCommand wcm:action="add">
                      <CommandLine>wmic path Win32_UserAccount WHERE name="Student" set PasswordExpires=FALSE</CommandLine>
                      <Description>Student password never expires...</Description>
                      <Order>2</Order>
                  </SynchronousCommand>
                  <SynchronousCommand wcm:action="add">
                      <CommandLine>net accounts /maxpwage:unlimited</CommandLine>
                      <Description>Disable expired local user account passwords</Description>
                      <Order>3</Order>
                      <RequiresUserInput>true</RequiresUserInput>
                  </SynchronousCommand>
                  <SynchronousCommand wcm:action="add">
                      <CommandLine>wmic path Win32_UserAccount WHERE name="Staff" set PasswordExpires=FALSE</CommandLine>
                      <Description>Staff password never expires</Description>
                      <Order>1</Order>
                  </SynchronousCommand>
              </FirstLogonCommands>
  Now, I let Sysprep complete and logged on as Staff. I went to the command prompt and ran the wmic command above to configure the student account to never expire. It failed when I ran it from a regular command prompt, but worked (and prevents the student
  password from expiring--what I want!) when I ran the command prompt as administrator, and paste the above. I was under the impression sysprep would be processing the unattend file with administrative privs. So I'm a bit closer here, but still unsure how to
  get it to run the above wmic command as administrator.

• Importing Security Through shared services caused admin user password chang

  Hi,
  I exported shared services from shared services url from one environment and imported into another environment. This changed the admin user password where I imported.
  Details:-
  I went to shared services of one environment say dev and to -> Applications Groups -> Foundation -> shared services and exported it. Took its export and imported into test environment.
  Now what it did it changed the user password of the target with the source one. However I did remove the internal ID of all files in it.
  Can anyone please help ? How to get the password of it back? I do not have back up of shared services of test environment.
  Version 11.1.2.1
  Thanks a lot in advance!!!!!!!!!!!!!!!!!!!!

  I was hoping you had a strategy in place, it is basically restoring the shared services relational database from a backup, stop the epm related services first.
  It may be even possible to correct your LCM file and set the admin to the way it should be but I am not sure what state the provisioning is in so couldnt guarantee it would work.
  Cheers
  John
  http://john-goodwin.blogspot.com/

• Changing the weblogic admin user password

  I have faced an issue in reseting weblogic admin user password. Following are the steps i have executed in sequence.please help to understand why it is not working this way
  I have 2 managed instances running on two separate computers.
  `Step 1.` shutdown the admin server instance ( i did not shutdown the node manager and other 2 manage server instances
  `Step 2.` Set the environment variables
  `cd $DOMAIN_HOME/bin`
  . ./setDomainEnv.sh
  `Step 3.` then executed the command below to create the new password
  cd ../security
  mv DefaultAuthenticatorInit.ldift oldDefaultAuthenticator
  java weblogic.security.utils.AdminAccount weblogic new_password .
  `Step 4.` backed up existing `boot.properties` file and created a new file. Also backed up data directory of admin server. created a new `boot.properties` file with following configuration
  with plain text username(weblogic_admin) and password (new_password).
  cd ../servers/AdminServer
  mv data data_old
  cd security/
  mv boot.properties oldboot.properties
  Step 5. Then i restarted the admin server. admin server is restarted successfully and i was able to login the admin console with my new username and password. Issue came when i try to shoutdown the admin server. when i execute sh stopWeblogicAdmin.sh , it will through following exception. But , if i kill the admin server process , then i am able to start the admin server with out any problem. and i am able to login to the server also. I am also able to stop and start manage server instances through admin console. But why it is failing only when i try to stop.could anybody help me on this
  Stopping Weblogic Server...
  Initializing WebLogic Scripting Tool (WLST) ...
  Welcome to WebLogic Server Administration Scripting Shell
  Type help() for help on available commands
  Connecting to t3://jipsl13t:12001 with userid weblogic_admin ...
  This Exception occurred at Fri Jan 18 12:20:09 GMT-00:00 2013.
  javax.naming.AuthenticationException [Root exception is java.lang.SecurityException: User: weblogic_admin, failed to be authenticated.]
  at weblogic.jndi.internal.ExceptionTranslator.toNamingException(ExceptionTranslator.java:42)
  at weblogic.jndi.WLInitialContextFactoryDelegate.toNamingException(WLInitialContextFactoryDelegate.java:788)
  at weblogic.jndi.WLInitialContextFactoryDelegate.pushSubject(WLInitialContextFactoryDelegate.java:682)
  at weblogic.jndi.WLInitialContextFactoryDelegate.newContext(WLInitialContextFactoryDelegate.java:469)
  at weblogic.jndi.WLInitialContextFactoryDelegate.getInitialContext(WLInitialContextFactoryDelegate.java:376)
  at weblogic.jndi.Environment.getContext(Environment.java:315)
  at weblogic.jndi.Environment.getContext(Environment.java:285)
  at weblogic.jndi.WLInitialContextFactory.getInitialContext(WLInitialContextFactory.java:117)
  at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:667)
  at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:288)
  at javax.naming.InitialContext.init(InitialContext.java:223)
  at javax.naming.InitialContext.<init>(InitialContext.java:197)
  at weblogic.management.scripting.WLSTHelper.populateInitialContext(WLSTHelper.java:520)
  at weblogic.management.scripting.WLSTHelper.initDeprecatedConnection(WLSTHelper.java:573)
  at weblogic.management.scripting.WLSTHelper.initConnections(WLSTHelper.java:313)
  at weblogic.management.scripting.WLSTHelper.connect(WLSTHelper.java:203)
  at weblogic.management.scripting.WLScriptContext.connect(WLScriptContext.java:61)
  at weblogic.management.scripting.utils.WLSTUtil.initializeOnlineWLST(WLSTUtil.java:147)
  at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at org.python.core.PyReflectedFunction.__call__(Unknown Source)
  at org.python.core.PyMethod.__call__(Unknown Source)
  at org.python.core.PyObject.__call__(Unknown Source)
  at org.python.core.PyObject.invoke(Unknown Source)
  at org.python.pycode._pyx4.connect$1(<iostream>:16)
  at org.python.pycode._pyx4.call_function(<iostream>)
  at org.python.core.PyTableCode.call(Unknown Source)
  at org.python.core.PyTableCode.call(Unknown Source)
  at org.python.core.PyFunction.__call__(Unknown Source)
  at org.python.pycode._pyx15.f$0(/product/jip/jipsl11t/wls/eni132_domain/shutdown.py:6)
  at org.python.pycode._pyx15.call_function(/product/tsm/jipsl11t/wls/eni132_domain/shutdown.py)
  at org.python.core.PyTableCode.call(Unknown Source)
  at org.python.core.PyCode.call(Unknown Source)
  at org.python.core.Py.runCode(Unknown Source)
  at org.python.util.PythonInterpreter.execfile(Unknown Source)
  at weblogic.management.scripting.WLST.main(WLST.java:124)
  at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at weblogic.WLST.main(WLST.java:29)
  Caused by: java.lang.SecurityException: User: weblogic_admin, failed to be authenticated.
  at weblogic.common.internal.RMIBootServiceImpl.authenticate(RMIBootServiceImpl.java:116)
  at weblogic.common.internal.RMIBootServiceImpl_WLSkel.invoke(Unknown Source)
  at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:667)
  at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:522)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
  at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:146)
  at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.java:518)
  at weblogic.rmi.internal.wls.WLSExecuteRequest.run(WLSExecuteRequest.java:118)
  at weblogic.work.ExecuteThread.execute(ExecuteThread.java:207)
  at weblogic.work.ExecuteThread.run(ExecuteThread.java:176)
  Problem invoking WLST - Traceback (innermost last):
  File "/product/jip/jipsl11t/wls/eni132_domain/shutdown.py", line 6, in ?
  File "<iostream>", line 22, in connect
  File "<iostream>", line 646, in raiseWLSTException
  WLSTException: Error occured while performing connect : User: weblogic_admin, failed to be authenticated.
  Use dumpStack() to view the full stacktrace
  Done
  Stopping Derby Server...
  Edited by: user8643895 on Jan 18, 2013 9:28 AM

  Hi,
  This issue was occurring because stopWebLogic.sh was picking the username and password from properties user config files in user's home directory: username-WebLogicConfig.properties, username-WebLogicKey.properties.
  If the credentials for weblogic server are changed then new user config files should be created, if these are not created then stopWebLogic.sh will pick up the old credentials and hence fail.
  Please refer the following document for information on user configuration files:
  http://docs.oracle.com/cd/E21764_01/web.1111/e13813/reference.htm#WLSTC430
  Connecting to the server after deleting username-WebLogicConfig.properties, username-WebLogicKey.properties resolves the issue as it forces the script to use the credentials provided by the user while running stopWebLogic.sh
  There are two ways you can resolve this issue:
  1) Create new user config files with the correct credentials as explained in the following document:
  http://docs.oracle.com/cd/E21764_01/web.1111/e13813/reference.htm#WLSTC430
  Or
  2) To force the stopWeblogic.sh script to use credentials provided by the user while running the script follow these steps:
  In the stopWeblogic.sh file use the following connect command:
  connect(userConfigFile='',userKeyFile='', url='${ADMIN_URL}', adminServerName='${SERVER_NAME}')instead of:
  connect(${userID} ${password} url='${ADMIN_URL}', adminServerName='${SERVER_NAME}')Hence in the stopWebLogic.sh script replace:
  echo "import os" >"shutdown.py"
  echo "if os.environ.has_key('wlsUserID'):" >>"shutdown.py"
  echo " wlsUserID = os.environ['wlsUserID']" >>"shutdown.py"
  echo "if os.environ.has_key('wlsPassword'):" >>"shutdown.py"
  echo " wlsPassword = os.environ['wlsPassword']" >>"shutdown.py"
  echo "connect(${userID} ${password} url='${ADMIN_URL}', adminServerName='${SERVER_NAME}')" >>"shutdown.py"
  echo "shutdown('${SERVER_NAME}','Server')" >>"shutdown.py"
  echo "exit()" >>"shutdown.py"with:
  echo "import os" >"shutdown.py"
  echo "if os.environ.has_key('wlsUserID'):" >>"shutdown.py"
  echo " wlsUserID = os.environ['wlsUserID']" >>"shutdown.py"
  echo "if os.environ.has_key('wlsPassword'):" >>"shutdown.py"
  echo " wlsPassword = os.environ['wlsPassword']" >>"shutdown.py"
  echo "connect(userConfigFile='',userKeyFile='', url='${ADMIN_URL}', adminServerName='${SERVER_NAME}')" >>"shutdown.py"
  echo "shutdown('${SERVER_NAME}','Server')" >>"shutdown.py"
  echo "exit()" >>"shutdown.py"
  Regards,
  Kishore

• How to change password of LDAP admin :cn=Directory Manager ?

  How to change password of LDAP admin :cn=Directory Manager ?
  Thanks!

  Try this, on the console log in as "cn=Directory Manager", open the Directory Server console and select the "Configuration" tab. You should see a "Settings" tab inside "Configuration" There you can find the fields for Directory Manager's new password.
  Regards.

• Cannot change password or admin login

  i have done everything i was advised to do but it just cant work bcus has tied the password and admin login
  some were in the computer.some people advised that i should take it to an apple store in my country
  but we dont have an apple store or a representative in cameroun, what next do i do?pls help

  Hello:
  Ok here we go:
  1- You have to restart your MBA holding down the Command+S keys, and this will take you into Single User Mode and it’s Terminal interface.
  2- Then you have to check the filesystem. to do this you have to type the following command in the terminal interface:
  fsck -fy
  3- Then you have to mount the root drive with write option enabled so you can apply and save any changes. Type this in the temrinal interface:
  mount -uw /
  4- And then type this command exactly as you see it here:
  rm /var/db/.AppleSetupDone
  5- Reboot your MBA by typing this in the terminal interface:
  reboot
  6- After you reboot, you will be see the “Welcome Wizard” startup screen. Follow the wizard and create a new user account. This new account name must be different from the one you already have
  7- Continue and boot into your Mac OS X with the new account you have just created, this new user account is an Administrator and has administrative access
  8- Now that you're logged in, go to System Preferences
  9- Click on Users & Groups
  10- Click on the Lock icon and use your newly created user name and password if asked. This will allow you to make changes to other user accounts
  11- On the user panel select the user account whose password you cannot change and then click on the Change Password... button and enter your new password.
  12- Delete, or grant administrative privileges to that old account
  13- Reboot/restart your MBA and now you can log back in with your old account. If you want you can delete the user account you created following this steps.
  Hope this helps.
  Good luck

• My admin login password was recently changed but I forgot it. I didn't get to shut off my mac, it entered sleep so now I cannot enter recovery mode.

  I know it's a bad idea to change passwords when you're stressed but I changed my admin login password and promptly forgot it after 5 minutes (there was a big commotion in the background). The problem is that now I cannot enter recovery mode, I'm stuck with the user login screen. I can log in as a guest just fine, but I need access to my files on the Admin account.
  Lastly, I also haven't linked my Apple ID to my AirBook, so that is out of the question too. What can I do to gain back control over my admin account, without wiping all my data? - Currently running OSX 10.9.4

  Once I get into recovery mode, do I go through the migration set up process? Should I be logged out of my account on the old macbook before I set up the new one? I really thought I knew what I was doing but am seriously confused now.
  Thank you.

• AUDIT action (create, delete, privilege escalation, set and change password from users account and group) users and admins in Solaris 10

  Hello.
  in Solaris 10 i need auditing process create, delete, privilege escalation, set and change password and etc... from users account and group.
  I set settings:
  in file syslog.conf:
  *.info;mail.none;cron.none;audit.notice            @IP-Remote-syslog-server-SIEM
  in file   /etc/security/audit_control:
  dir:/var/audit
  flags:lo,ad,ex,cc,am,no,fc,fd
  minfree:20
  naflags:lo
  plugin:name=audit_syslog.so;p_flags=lo,ad,ex,cc,am,no
  in file   /etc/security/audit_user:
  root:lo,ad:no
  Now I see in the logs only the fact of a connection via SSH and run processes on behalf of users. Creation. delete users, change passwords for some reason do not is logged.
  Many users. For each individual write permissions in the file /etc/security/audit_user not possible, it is likely to forget any new user (or there is a possibility in this file one line to describe the audits for all accounts?)
  Where is the mistake?

  You are most likely hitting Bug 15779000 user/role/groupadd/mod/del don't audit their use.
  And the fix is only available in S11.2.
  -- Renaud

• How to Enforce User Change Password First Time User in Release 2?

  Hi...
  We discovered in Oracle Directory Manager(in unix is oidadmin), there actualy
  column to expiry date.(the default is 60).
  We follow this notes in metalink..
  Note:176470.1 Subject: How To Pre-Expire Portal Passwords
  Even though the note is for Portal30(release1), we just wangt to try it in our Release 2...
  Extract from the note
  "3. Set the value of the column LAST_PASSWD_CHANGE_TIME in the table WWSEC_PERSON$ in SSO schema to a value older than the password expiration period (default is 90 days) before the current time (e.g. sysdate - 100) for the appropriate user(s)
  4. For example, if you have created a user called TEST
  you would issue a command such as:
  update wwsec_person$
  set LAST_PASSWD_CHANGE_TIME =sysdate-70
  where USER_NAME='TEST';
  commit; "
  But, when we try to login again in the portal, we can still login...
  So, is the function still exist in Release 2?..
  If not, why Oracle Portal throw that function away?
  Why there still columns in WWSEC_PERSON$ that maybe linked to the password problem?
  can anybody help/explain?
  Thanks....

  Rather than rehash what has already been thoroughly discussed, check this thread. This should answer your question.
  Can a user change his own password after admin has set it
  The english version of Jose Troya's blog: http://obiee101.blogspot.com/2008/08/obiee-change-password.html
  Edited by: LC143 on Aug 27, 2008 1:36 PM

• In Portal Anonymous mode - Change password option not coming- login fails

  Hi Experts,
       We are having some application which requires login in anonymous mode. When we click the application and give the user id password, it loggs in properly, there is no problem in that.
      But if the password is reset by administrator, then when entering the reset password given by admin it should ask to change the password. This is happening in normal scenario(/irj/portal), but when try the same in anonymous mode(irj/portal/anonymous) where the prompt is from the login required application, then it says login failed instead of giving the change password and confirm password screen.
  Appreciate your help in solving this issue. I hope many would have faced similar situation.
  Thanks
  Yusuf

  Hi Yusuf.
  Do you use a standard or custom login module for your application?
  More likely the used login module does not have a logic that handles such scenario as a change of user's password.
  In this case you need to implement a custom module with a required functionality.
  Best regards,
  Aliaksandr Zhukau

• I am getting a Changing Password Failed error when I try to join an active directory

  I had a working AD configuration under Snow Leopard. When I upgraded to Mountain Lion, my account was no longer in sync with the domain. I got the red dot on the login screen and my domain password was out of sync. I unhooked from the domain at that point. This was several months ago.
  However, over the last few weeks, I keep finding myself locked out of the domain. I suspect it's something on my Mac that is trying to use my old credentials. I was hoping to rejoin the domain and see if I could get my account back in sync. When I get a domain admin to enter his password on the Directory Utility join screen, it first notes that the computer account already exists in the domain. I tell it to continue, but I can't get past this point:
  2013-06-24 14:21:20.729935 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - Computer account either already exists or DC is already Read/Write
  2013-06-24 14:21:20.732774 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - existing record found 'CN=MYMACHINE,OU=Default,OU=Workstations,OU=MyCity,OU=North America,DC=GLOBAL,DC=OURCORP,DC=NET'
  2013-06-24 14:21:20.732822 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - switching to cache 'MEMORY:0x7faef36ed770'
  2013-06-24 14:21:20.733141 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - krb5_credential - Trying to find service kdc for realm GLOBAL.OURCORP.NET flags 2
  2013-06-24 14:21:20.734196 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - krb5_credential - connecting to 12
  2013-06-24 14:21:20.734221 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - krb5_credential - connecting to host: tcp 10.22.94.212:kerberos (1.2.3.4)
  2013-06-24 14:21:20.741380 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - krb5_credential - host completed: tcp 10.22.94.212:kerberos (1.2.3.4)
  2013-06-24 14:21:20.741416 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - krb5_credential - krb5_sendto_context done: 0
  2013-06-24 14:21:20.741619 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - krb5_credential - trying to set password
  2013-06-24 14:21:20.741637 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - krb5_credential - trying to set password using: MS set password in realm GLOBAL.OURCORP.NET
  2013-06-24 14:21:20.741648 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - krb5_credential - using TCP since the ticket is large: 1560
  2013-06-24 14:21:20.741665 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - krb5_credential - Trying to find service change_password for realm GLOBAL.OURCORP.NET flags 2
  2013-06-24 14:21:20.742867 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - krb5_credential - connecting to 12
  2013-06-24 14:21:20.742908 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - krb5_credential - connecting to host: tcp 10.22.94.212:kpasswd (1.2.3.4)
  2013-06-24 14:21:20.745231 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - krb5_credential - host completed: tcp 10.22.94.212:kpasswd (1.2.3.4)
  2013-06-24 14:21:20.745250 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - krb5_credential - krb5_sendto_context done: 0
  2013-06-24 14:21:20.745398 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - krb5_credential - set password using MS set password returned: 0 result_code 3
  2013-06-24 14:21:20.745417 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - krb5_credential - Changing password failed for '[email protected]' with error '' (3)
  2013-06-24 14:21:20.745426 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - setting Computer Password FAILED for existing record - 5103
  2013-06-24 14:21:20.745818 EDT - 4934.65016, Node: /Active Directory, Module: ActiveDirectory - ODNodeCustomCall failed with error 'Credential operation failed' (5103)

  Reggierror,
  Had the same issue and discovered that I made my AD object name too long (16 instead of 15 character which is the limit) You might want to try making the computer object name shorter if you can.

• How to restrict changing password for user ?

  Hi All experts ,
  We have created users . Users should not change their password without permission of Administrator . How to restrict them by setting Permissions / Authorizations ? 
  Thanks.
  KISHORE SATPUTE

  Hi,
  In "USER MAINTENANCE- SU01" --> in the "logon tab" there are 5 different "user type"
  1. dialog
  2. system
  3. communication
  4. service
  5. reference
  Kindly mention the function and role of all the above mentioned user types specifically and hows is one user type different from another.
  These are as follows:-
  1. Dialogue:-
  For this kind of users:-
  GUI login is possible.
  Initial password and expiration of passowrd are checked.
  Multi GUI logins are checked.
  Usage:- These are used for GUI logins.
  2. System
  For this kind of users:-
  GUI login is not possible.
  Initial password and expiration of passowrd are not checked.
  Usage:- These are used for internal use in system like background jobs.
  3. Communication
  For this kind of users:-
  GUI login is not possible.
  Users are allowed to change password through some software in middle tier.
  Usage:- These are used for login to system through external systems like web application
  4. Service
  For this kind of users:-
  GUI login is possible.
  Initial password and expiration of passowrd are not checked.
  Multiple logins are allowed.
  Users are not allowed to change the password. Only admin can change the password
  Usage:- These are used for anonymous users. This type of users should be given minimum authorization.
  5. Reference
  For this kind of users:-
  GUI login is not ible.
  Initial password and expiration of passowrd are not checked.
  Usage:- These are special kind of users which are used to give authorization to other users.
  Rewads point if helpful
  Thanks
  Pankaj Kumar

• Using Jackrabbit User Manager programmatically for changing passwords and getting user data.

  I am trying to do a change password request using the Jackrabbit User Manager with the REST URL /system/userManager/user/<username>.changePassword.json.  The problem I am having is that this request requires an oldPwd form param in the request.  The issue is that when I am trying to do this request it is in response to the user selecting "Forgot Password" so our logic has created a random password which we then email to the user so they can use that the next time they want to login.  We need to change that user's password in CRX so they can log in using it next time.  Since they haven't logged in there is no session, NOT the problem.  THE PROBLEMS, I don't know 1. how to use the userManager to get that user's old password, since /system/userManager/user/<username>.json doesn't appear to return the password and 2. if I could get the old password it most certainly will be encoded, some how, so I will need some decoding algorithm to pass it through in order to get the actual password to set as the oldPwd form param to my change password request.  Please let me know if you require any further explanation.  Any assistance would be greatly appreciated.  Thank you, in advance, for your assistance.
  Sincerely,
  Mike Sucena
  [email protected]

  Hi Mike,
  msucena wrote:
  Justin:
  Does your response mean that until version 2.1.2 of Jackrabbit User Manager is released I cannot change the password without knowing the old password?
  No. It means that this feature is not available in version 2.1.0 of the Sling Jackrabbit User Manager bundle. It was added after that release. You have a number of options:
  Build the bundle from source.
  Use one of the SNAPSHOT bundles available from the Apache Snapshots repository.
  Use the release which is being voted upon now (https://repository.apache.org/content/repositories/orgapachesling-175/org/apache/sling/org .apache.sling.jcr.jackrabbit.usermanager/2.2.0/). (Note - we decided to use 2.2.0 as the version number rather than 2.1.2 as originally planned due to the scope of this release).
  Write a different servlet which performs the same actions.
  Meaning that being able to use either the credentials of the "Admin" user or using the credentials of a member of the "UserAdmin" group is not supported in the current released version 2.1.0?
  Correct. It was added after the 2.1.0 release.
    If I currently need the old password is there any Sling REST - Jackrabbit API call I can use in order to get the old password since using /system/userManager/user/<username>.json doesn't appear to return the password?
  -Mike
  The plain text password is not stored. And this should be considered a good thing.
  If you have questions about the development process we follow in Sling (or at Apache as a whole), by all means ask on the Sling users mailing list. It is reasonably well-established and we love to talk about it.