Keycloak LDAP Writable Change User Password Error

536 views
Skip to first unread message

Hua Yao

unread,
Jun 19, 2022, 6:03:31 AM6/19/22
to Keycloak User
Hi Team, 

Set user federation in LDAP protocol in Keycloak (writable), but when attempting resetting the password for the user, Keycloak shows error as below. 

I googled for quite some times, but none of the solution works, i.e. giving permission to the user / group in AD server. 

Any of you have encountered this also? how did you fix it? 

17:58:42,337 WARN  [org.keycloak.services.resources.admin.UserResource] (default task-13) Could not update user password.: org.keycloak.models.ModelException: Could not modify attribute for DN [CN=UAT,CN=Users,DC=testdomain,DC=com]

   at org.keycloak.keycl...@15.0.2//org.keycloak.storage.ldap.idm.store.ldap.LDAPOperationManager.modifyAttributes(LDAPOperationManager.java:616)

   at org.keycloak.keycl...@15.0.2//org.keycloak.storage.ldap.idm.store.ldap.LDAPIdentityStore.updateADPassword(LDAPIdentityStore.java:399)

   at org.keycloak.keycl...@15.0.2//org.keycloak.storage.ldap.idm.store.ldap.LDAPIdentityStore.updatePassword(LDAPIdentityStore.java:367)

   at org.keycloak.keycl...@15.0.2//org.keycloak.storage.ldap.LDAPStorageProvider.updateCredential(LDAPStorageProvider.java:664)

   at org.keycloak.ke...@15.0.2//org.keycloak.credential.UserCredentialStoreManager.updateCredential(UserCredentialStoreManager.java:184)

   at org.keycloak.ke...@15.0.2//org.keycloak.services.resources.admin.UserResource.resetPassword(UserResource.java:614)

   at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method)

   at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)

   at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)

   at java.base/java.lang.reflect.Method.invoke(Method.java:566)


Reply all
Reply to author
Forward
0 new messages