DSfW: Unable to Change User Password using net user command

  • 7014530
  • 10-Feb-2014
  • 10-Feb-2014

Environment

Novell Open Enterprise Server 11 SP1 (OES11SP1)
Domain Services for Windows
DSfW
eDirectory 8.8.7
NMAS

Situation

Using Active Directory it is possible to change the password for a given user, using the net user user_name * /domain command.

For more information please see the following Microsoft KB article:
http://support.microsoft.com/kb/149427

Using net user command executed from a Windows 7 Workstation joined to a DSFW domain fails.

Error returned:
"net user user1 novell123 /domain
The request will be processed at a domain controller for domain oes11sp1.com.
System error 31 has occurred.
A device attached to the system is not functioning."

ndstrace +LDAP shows the following:

2602751744 LDAP: [2013/08/29 15:46:53.761] (/var/opt/novell/xad/run/ldapi pid=4306 uid=0 gid=0)(0x000e:0x77) DoExtended on connection 0xe092700
2602751744 LDAP: [2013/08/29 15:46:53.761] (/var/opt/novell/xad/run/ldapi pid=4306 uid=0 gid=0)(0x000e:0x77) DoExtended: Extension Request OID: 2.16.840.1.113719.1.39.42.100.11
2602751744 NMAS: [2013/08/29 15:46:53.764] NMAS Audit with Audit PA not installed
2602751744 NMAS: [2013/08/29 15:46:53.764] NMAS Audit with XDAS not installed
2602751744 NMAS: [2013/08/29 15:46:53.777] Successful set password for CN=user1 lastname.CN=Users.O=oes11sp1
2602751744 LDAP: [2013/08/29 15:46:53.777] (/var/opt/novell/xad/run/ldapi pid=4306 uid=0 gid=0)(0x000e:0x77) Sending operation result 0:"":"" to connection 0xe092700
2129053440 LDAP: [2013/08/29 15:46:53.777] (/var/opt/novell/xad/run/ldapi pid=4306 uid=0 gid=0)(0x000f:0x66) DoModify on connection 0xe092700
2129053440 LDAP: [2013/08/29 15:46:53.777] (/var/opt/novell/xad/run/ldapi pid=4306 uid=0 gid=0)(0x000f:0x66) modify: dn (cn=user1 lastname,cn=Users,dc=oes11sp1,dc=com)
2129053440 LDAP: [2013/08/29 15:46:53.777] nad_ppolicy_rewrite_pwdLastSet: Attribute pwdLastSet on entry <pwdLastSet> has invalid syntax 'cn=user1 lastname,cn=Users,dc=oes11sp1,dc=com'

Resolution

Apply the November 2013 Maintenance Patch

Cause

During password change by using 'net user' command, password expiry time is set as part password change process. While setting password expiry, The  condition is not properly checked and returning wrong error code.  Due to this, command fails with an error 'System error 31 has occurred'.

Feedback service temporarily unavailable. For content questions or problems, please contact Support.