How do I resolve “WILL_NOT_PERFORM” MS AD reply when trying to change password in scala w/ the unboundid LDAP SDK?

by

connection not secure enough

Quote from: http://support.microsoft.com/kb/269190

In order to modify this attribute, the client must have a 128-bit Secure Socket Layer (SSL) connection to the server.

So even if everything else looks right, you may still get an SvcErr: DSID-03190F4C, problem 5003 (WILL_NOT_PERFORM) if the connection is deemed insecure.

lacking admin rights

A modify request may fail if you try to do a replace without insufficient rights.

dn: CN=johndoe,OU=Users,DC=example,DC=com
changetype: modify
replace: unicodePwd
unicodePwd:: base64(utf16le(quoted(password)))
-

You will get an SecErr: DSID-03150E47, problem 4003 (INSUFF_ACCESS_RIGHTS) in that case. This happens if you try to bind with an unprivileged account.

password history

Some admins like to have a long password history (e.g. last 24 passwords saved). You will get a CONSTRAINT_ATT_TYPE if you are using an old password that is already in the history.

regular user

  1. secure the connection

  2. use a deleteadd combo.

e.g.

dn: CN=johndoe,OU=Users,DC=example,DC=com
changetype: modify
delete: unicodePwd
unicodePwd:: base64(utf16le(quoted(old password)))
-
add: unicodePwd
unicodePwd:: base64(utf16le(quoted(new password)))
-

More Related Contents:

  1. Authenticating against Active Directory with Java on Linux
  2. How to connect with Java into Active Directory
  3. Write Java Program to grade Scala Homeworks
  4. Jvm takes a long time to resolve ip-address for localhost
  5. How to use java.String.format in Scala?
  6. Scala equivalent of Java java.lang.Class Object
  7. “eval” in Scala
  8. Get the changed HTML content after it’s updated by Javascript? (htmlunit)
  9. What is the point of the class Option[T]?
  10. Shuffle a list of integers with Java 8 Streams API
  11. Is asynchronous jdbc call possible?
  12. Sign CSR using Bouncy Castle
  13. Is there a PriorityQueue implementation with fixed capacity and custom comparator?
  14. Writing Custom Kafka Serializer
  15. Running Java gives “Error: could not open `C:\Program Files\Java\jre6\lib\amd64\jvm.cfg'”
  16. Iterating over Java collections in Scala
  17. Why does SimpleDateFormat parse incorrect date?
  18. Java compile speed vs Scala compile speed
  19. Unable to find velocity template resources
  20. Converting a Java collection into a Scala collection
  21. What are the Spark transformations that causes a Shuffle?
  22. How can I use a Scala singleton object in Java?
  23. Spark spark-submit –jars arguments wants comma list, how to declare a directory of jars?
  24. Convert Java Map to Scala Map
  25. Which programming languages can be used to develop in Android? [duplicate]
  26. Creating a jar file from a Scala file
  27. Difference between SparkContext, JavaSparkContext, SQLContext, and SparkSession?
  28. How do a LDAP search/authenticate against this LDAP in Java
  29. Accessing scala.None from Java
  30. In Scala, how can I subclass a Java class with multiple constructors?

Leave a Comment