Password change via LDAP

This plugin is for the outdated version (v7) of the product.
With the current version (v8), use the plugin available here.

This plugin allows for changing user account password stored on LDAP server.

It is assumed that mailserver users are authenticated via IMAP and SMTP and their passwords are actually stored on LDAP server, so changing password there will result in changing password for email account as well.

NB: This functionality requires version 7.4.2 or newer.

Upon downloading and extracting plugin package, rename its main directory from:

plugin-ldap-change-password-master

to:

ldap-change-password

Then you'll need to deploy the plugin so that its index file is available at the following location:

data/plugins/ldap-change-password/index.php

To enable the plugin, add the following to array defined in data/settings/config.php file:

'plugins.ldap-change-password' => true,
'plugins.ldap-change-password.config.host' => 'ldap.server.name',
'plugins.ldap-change-password.config.port' => 389,
'plugins.ldap-change-password.config.search-dn' => 'o=host,dc=server,dc=name',
'plugins.ldap-change-password.config.bind-dn' => 'cn=admin,dc=server,dc=name',
'plugins.ldap-change-password.config.bind-password' => 'bindpasswd',
'plugins.ldap-change-password.config.password-attribute' => 'userPassword',
'plugins.ldap-change-password.config.search-attribute' => 'mail',
'plugins.ldap-change-password.config.password-type' => 'crypt',

Feel free to adjust the configuration values according to your LDAP server configuration. Additionally, the plugin uses the following parameters supplied in data/settings/settings.xml file:

<PasswordMinLength>6</PasswordMinLength>
<PasswordMustBeComplex>On</PasswordMustBeComplex>

  • PasswordMinLength - defines minimal number of characters the password must have;
  • PasswordMustBeComplex - if set to On, the password has to include at least one digit and at least one non-alphanumeric character.