Cannot change user password when using AD with read and write permissions
Symptoms
The following appears in the atlassian-crowd.log when you try to change an AD user password from Crowd.
Failed to update user password. Cause: CrowdRestException: org.springframework.ldap.OperationNotSupportedException: [LDAP: error code 53 - 0000001F: SvcErr: DSID-031A120C, problem 5003 (WILL_NOT_PERFORM), data 0
]; nested exception is javax.naming.OperationNotSupportedException: [LDAP: error code 53 - 0000001F: SvcErr: DSID-031A120C, problem 5003 (WILL_NOT_PERFORM), data 0
]; remaining name 'cn=XXXXXXX,cn=users,dc=example,dc=com'
-- referer: http://XXXXXXXXXXX/setuserpassword.action?username=XXXXXX | url: XXXXXX/dosetuserpassword.action | userName: admin | action: dosetuserpassword
NOTE: this also happen with other Atlassian applications such as JIRA, Confluence and Crowd.
See also
- CWD-2962 - Getting issue details... STATUS
- CONFSERVER-34742 - Getting issue details... STATUS
See also this JIRA document: LDAP Error Code 53
Known Causes
- This is caused when you don't use SSL in your LDAP connection and AD enforces SSL connection.
- There are password policies in the AD environment
Resolution
- If the problem is caused by SSL, proceed on configuring the LDAP with SSL.
- If the issue is caused due to password policies, contact the LDAP administrator for policy information.
Last modified on Nov 2, 2018
Powered by Confluence and Scroll Viewport.